INVOICE AND PARKING LIST[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

INVOICE AND PARKING LIST.zip
Size

664KB
MD5

8771d68c26ec6e0d91155f8cf26daf38
SHA1

a4b67d7c74b631ea6030605ae5a1d3ec21bb2c2d
SHA256

99a56b414327abdcb54519843b4e0e6c419bc763974555024c377fddadcf6a07
SHA512

6a1a0e2c2dc360e82cc257ed667f0cb2ee83dbd72b87b54b109dd60ef645e195dec675cd88bb20d06b56b11ca26664b098b903082d32cf4338d440d2560f47ec
SSDEEP

12288:ez75voDzbqOL2BEhyfcHKovDKJAcWrQJ5D0xWBrCZP2ib:ezVgXbbiSUcHKiDTC5DdWUe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/INVOICE AND PARKING LIST.exe

Files

INVOICE AND PARKING LIST.zip
.zip
INVOICE AND PARKING LIST.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ