2decbf1b4dbf9a71422da3bd34f9c4bd1bf58ebaf39ef01d5451dac0be5e7d66 | Triage

Sharing

General

Target

2decbf1b4dbf9a71422da3bd34f9c4bd1bf58ebaf39ef01d5451dac0be5e7d66
Size

432KB
MD5

cc5bdb056ffa030ba7cd4bf907a74af8
SHA1

14ba0b7ca68c16241852c1d7b8963037c80483eb
SHA256

2decbf1b4dbf9a71422da3bd34f9c4bd1bf58ebaf39ef01d5451dac0be5e7d66
SHA512

e2655de9152775aceb2de2a1d715714e334e4b9b87c810942a54eaf5352516f1cb760ff205c16a9c858b8dbce12316c86cb157b28e1655e771f9b294e616f5a7
SSDEEP

6144:8x0VDXxQyrWwyJkeY+Js0OdOM2nY8U/MI6Cv1QBRc++dYB6ZZY32fX/pnneU5jk:g0VLxQyrWscT+8U/+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
unpack002/Dokument Zamówienie 03062022_ZTO_2023_pdf .exe

Files

2decbf1b4dbf9a71422da3bd34f9c4bd1bf58ebaf39ef01d5451dac0be5e7d66
.iso
out.iso
.iso
Dokument Zamówienie 03062022_ZTO_2023_pdf .exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 365KB - Virtual size: 364KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ