delivery arragement[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

delivery arragement.zip
Size

660KB
MD5

93070581c5f5a6041234e1818766e857
SHA1

8dec419458874297f87417613e0bfd686c2e7a7f
SHA256

3d63b4a40b975fc997e2b48c64d8f77fcc63af6069228a28d0d75bd5ac5b528a
SHA512

9334891dcd6eda68738b00e904a12635b7c7d14144d17b6e36562c279c268c452ee04821ae38da5b101525ad436492cb55336f3d1302df0218aa0658acb4e002
SSDEEP

12288:fhefTlfqqNdJ2DUddwa2tJR6cVteasTBFF+r3pCi1xW8v7NDN+z6+EhxtAYuzn+A:kRSqNdJ24dez6cfehTBwCQs6A6+iC+A

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/delivery arragement.exe

Files

delivery arragement.zip
.zip
delivery arragement.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 696KB - Virtual size: 694KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ