fedex 773395601565[.]ace | Triage

Sharing

General

Target

fedex 773395601565.ace
Size

618KB
MD5

202538551c71455130eb51d2a4ced122
SHA1

c83c8d76f2b514e5fafb574c4909373c751275b9
SHA256

07513ea1734b958e6783261d5955641043b1deac9fdb38f5a703280485d4900d
SHA512

ae4b9b7436f7eccb01ac0b8aeea00922bc887bd56cafe5a65ff2d636f2ca0780540ab79d081846754c31c1ba959ab497f33b5ceee6bf21aab78c45b878c1b357
SSDEEP

12288:E1EiVHCCnfX4nQDBROw/8qLt/Bphxi7TxeLZBHYoquyYRr/UG:k9CCf4Q+w/8qxpph2TxsZBHYVtYdcG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/fedex 773395601565.exe

Files

fedex 773395601565.ace
.ace
out.ace
.ace
fedex 773395601565.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 685KB - Virtual size: 684KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ