780be219fe9bf5c995589a283b8d1d3f5493ee5fcdc630ae3d1e47f8d1ef7916 (1)[.]zip

General

Target

780be219fe9bf5c995589a283b8d1d3f5493ee5fcdc630ae3d1e47f8d1ef7916 (1).zip
Size

629KB
MD5

50417d087df1dea21b8a0c48e5e1afd3
SHA1

e6f86b04f6ce2030429ec3c3fc2b98467d05f9c3
SHA256

9774f1c77241fdd5529db9324fb6145bb4617626630d17173c141e47c4047d1e
SHA512

9f8e1bf23088cbd38fab5335a9737253639ae08f1846fe479d427b584e07e761396fd041d383e5b39a37e817b58904e48b235a53f4d9850cbcea6b3a507adae3
SSDEEP

12288:PItWI1UTjq2dEEZpkIS70RfsbbhwnQOIJBW9oLW+0ARuAlUVGHPSas:PGW+U9EspkISYubbhGQXrK+JxcGHPSas

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/SHIPPMENT_DOCUMENTS.exe

780be219fe9bf5c995589a283b8d1d3f5493ee5fcdc630ae3d1e47f8d1ef7916 (1).zip
.zip

Password: infected
780be219fe9bf5c995589a283b8d1d3f5493ee5fcdc630ae3d1e47f8d1ef7916
.rar

Password: infected
SHIPPMENT_DOCUMENTS.exe
.exe windows:4 windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 693KB - Virtual size: 693KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ