SHIPPING DOC[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

SHIPPING DOC.zip
Size

606KB
MD5

1a5dbb0f666574d3281257a3c7d0c0f1
SHA1

730e40b3996070c388d459f5e36f505a9b7cf67b
SHA256

8bfbbc69796c9d2c80bf23589bad8d15630fe55c6c630debd4f3b19958ea0af0
SHA512

848363590761e66b3725458f39f41ed41d4b029e1789eb80990b99af3081b852b8e7f65f367e5a974b2be43ed6b5e01d899b29d816854ba116499f76f59333eb
SSDEEP

12288:/oB+V5BwTg/OpC63RMXvKV5BTY+ZmIykqvN9Kh9WyrzmEB7:g++Dpb3RMXvKxYyyn1IXPZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/SHIPPING DOC.exe

Files

SHIPPING DOC.zip
.zip
SHIPPING DOC.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 636KB - Virtual size: 636KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ