Invoice & Packing list[.]XZ[.]xz | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Invoice & Packing list.XZ.xz
Size

513KB
MD5

772948ac0b93127bca3411a6a5d64c6c
SHA1

60b20daba1bb5a0aa870d7b94f2852bbbb72aa7e
SHA256

269c7b2f54fbcf1da3e69a11eb3d2aa29bc19ec57209889e96a75a60bcb2f039
SHA512

a6eddfaabbebe4533525cb254a581fb9ef0e1092f76e31d358a10f8bddfe3fc7e40c72474e9e711333312b1c1f8b14f53010278186b38840b8fef1fa2fb92b7b
SSDEEP

12288:5zefW/pRZ/iG9ZCvtSspZzI90C/BUPmw4Ui0JZY2ft:LlqGuvtSsplImCCPmwV3Z31

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/SWIFT COPY USD$21000.exe

Files

Invoice & Packing list.XZ.xz
.rar
SWIFT COPY USD$21000.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 999KB - Virtual size: 999KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ