SHIPPING DOC[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

SHIPPING DOC.zip
Size

369KB
MD5

0fe7fac5f9d20e9d3c96dab0eb607319
SHA1

2c339c033510e314bb7f2a0581d9f6c63bde07c6
SHA256

8225670e0459e46785e400e29c6b89f32d6f8d40f5201e96dab20df05cfff07b
SHA512

d3fd059f001d00bbb9929c9734aaff6b9a70fb741597b0f3a31afa55df7350980b8a33b5643f40e6fc732fb0756be05cfe495e65fa28956bc6a92f3184c026b0
SSDEEP

6144:3v3Nm+h+0qTLSIwceGaS0y9C14ywyruV9SvTXf7tgX/u71prDb2m/4zAStl943qn:fU+0V38VS0y9h4uVkrOArDF/4kj3EN1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/SHIPPING DOC.exe

Files

SHIPPING DOC.zip
.zip
SHIPPING DOC.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 465KB - Virtual size: 465KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ