Static task
static1
Behavioral task
behavioral1
Sample
Shipping commercial invoice order confirmation #2303005328.pdf.exe
Resource
win7-20231023-en
Behavioral task
behavioral2
Sample
Shipping commercial invoice order confirmation #2303005328.pdf.exe
Resource
win10v2004-20231127-en
General
-
Target
f12b00c60edb1f9db910d2011969a5231e969865fc981884454da649008f0db9
-
Size
621KB
-
MD5
2b36d313620176c1201059a969293c8e
-
SHA1
6ea3a122a47472aa5e46ae3d11531aaefc7764a1
-
SHA256
f12b00c60edb1f9db910d2011969a5231e969865fc981884454da649008f0db9
-
SHA512
c114d784a3943ecf6c65bb348b87fe8c8ea1443f6ef906f8749e7fc02881fffed1b9959c99d8026cddfd8e618911cef0e7bd0161d8adc1efa62e8eb67165efa4
-
SSDEEP
12288:1A/k27LVv0ztqIEgYT9+Kyp6M9lBZ8HuhJ5Znl5s1+SWdg53pUagkdnMC:1A/R7LVssVTw/pd7ZWub5Z/s15WoU7A
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource unpack001/Shipping commercial invoice order confirmation #2303005328.pdf.exe
Files
-
f12b00c60edb1f9db910d2011969a5231e969865fc981884454da649008f0db9.rar
-
Shipping commercial invoice order confirmation #2303005328.pdf.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 714KB - Virtual size: 713KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ