order HL51L05[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

order HL51L05.zip
Size

528KB
MD5

20848882dbaabfeeb0d06a587389885f
SHA1

457282ad77fd8d22db467a12c4509af9f8fec7a3
SHA256

cd51692d6e4ccdb6b18ecb48c2f382b01b006898f938f66a94c83a93fd1e519b
SHA512

9cbed3c13a8ea4b2616760407ef4acfe43d1ca1673da1cfbc45e7334c68e6e26b2aefdd2869cec8b7233589e74508e3f81ab0f0d34ee14837e51c0f80f62beb7
SSDEEP

12288:GJrvkFcGPyhACR2RmS5JenFHvqztpWQ/s+F9NpLFrwQ:Gp86xaCR2F5JgHWdk+nLFrwQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/order HL51L05.exe

Files

order HL51L05.zip
.zip
order HL51L05.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 874KB - Virtual size: 874KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ