SHIPPMENT DOCUMENT[.]exe | Triage

Sharing

General

Target

SHIPPMENT DOCUMENT.exe
Size

694KB
MD5

8a76eef4bc1d106d28bb2aafb1473367
SHA1

3d3ed59dc0dcc246ee6866cfe8e9546b27699e04
SHA256

d38668af94d8c3a29626ad116494d55060fd2f2dd9e8f824861fe621599c4b63
SHA512

e6980fe3471601c60ab2d5f240a2fd7e98e93fe33e3143d23e3d2de81d90904b19c03ad9cdd4fa4b580c6f586ef9ca5359bd419618f22af8e9c315e265abd30b
SSDEEP

12288:La2iN1Bdc9zTZoXrRJQq7ylTjotx1YCRKXN4/ikCsnfk4bnBF:La1nMtZoXdJgVjotx1YgKXNWnTfvbn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SHIPPMENT DOCUMENT.exe

Files

SHIPPMENT DOCUMENT.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 671KB - Virtual size: 670KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ