Static task
static1
Behavioral task
behavioral1
Sample
FedExAWB#50991274643.exe
Resource
win7-20230831-en
Behavioral task
behavioral2
Sample
FedExAWB#50991274643.exe
Resource
win10v2004-20230915-en
General
-
Target
FedExAWB#50991274643.exe
-
Size
532KB
-
MD5
41c56cab32bf0e2f5b11dc0c8d1ba0a0
-
SHA1
d02b16754e71c4c59bb442d99fb5a986e0cc5a6d
-
SHA256
650f2f1215bca8640d5edd8d0a5067d40efd6d6272c55ddf1451e7c177fea406
-
SHA512
20e8891c30a9bcfc6cc1b24f6289f8b53a9bd591fa47ddf8b89aaaf4b4f47e1a74fc321b848b30f4331c13cf67df4d318f97060d0472b45a8e634339941c078d
-
SSDEEP
12288:FF0qEisUH/woSW1jGa5viXCJSL752ZtAXnu/UO:sqEWooJ84vWNN6C3u/J
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource FedExAWB#50991274643.exe
Files
-
FedExAWB#50991274643.exe.exe windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 516KB - Virtual size: 512KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 8KB - Virtual size: 6KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 4KB - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ