SAMPLE ORDER[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

SAMPLE ORDER.zip
Size

780KB
MD5

a3aa6013ec70e4f2791798a8b6922a3e
SHA1

ff2f6ca0983e2831ce950f0339407061a8f7b2b9
SHA256

403a5745fe3b23b9c560dad571c5216d3bf09a282fc6b17559093b7e1e7aaf60
SHA512

301cc98e263d20524162a55267b3895a3e7bbaad26eaa51ddce646239c897664f903f9b8297aa6cdff8284e150c3726496674fede9aafd6d597f4f5a5afeffbb
SSDEEP

24576:C2YgPV3pKvi8p5KMiA2BJJPojWX3/hr6Y+:/tZpKvXvbiA2j6jWX3/V3+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/SAMPLE ORDER.exe

Files

SAMPLE ORDER.zip
.zip
SAMPLE ORDER.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 833KB - Virtual size: 833KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ