INVOICE SHIPPING DOCS[.]exe | Triage

Sharing

General

Target

INVOICE SHIPPING DOCS.exe
Size

673KB
MD5

f7db4bb93fb1a2beb52f7fa748ebdbbf
SHA1

df101ae181a9c10b488522cea31b1c9c45280dff
SHA256

dce92db361fb0e2b6cc00cb1b205288120af9c48b7ffdfc71b5735ad81c72b16
SHA512

5a32732ffbd7cede84925ac58e32e9a075648d1c86ff2909552229f99fa8dbf1cd98af753ad578ace08e654d6ae89a5612d8652c06213df9ed1adaadfaaa7d06
SSDEEP

12288:IY6lJMf8trsO/prC0LDn4BGMSQSGlgq9OeCNDiCDKocHPh3gZ:+2O/RCM4AT6CNDi6KtvM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
INVOICE SHIPPING DOCS.exe

Files

INVOICE SHIPPING DOCS.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 665KB - Virtual size: 665KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ