24fbb3fdadf3c91d97aea66debc5ef3b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

24fbb3fdadf3c91d97aea66debc5ef3b
Size

23KB
MD5

24fbb3fdadf3c91d97aea66debc5ef3b
SHA1

df6f4089f1e1d6ca71632bb0fd5fa81a543d3124
SHA256

029b4d405a9257dabbc1ab17391ee3d2faaa83b000cd224673b3bcfff8f64d47
SHA512

6e3f8f9de4ffc400a38326c29491041f0e81c3266d03ee6d8c91304437a28c45abaad19fe22a1c8ec32f4574f1c71635d2df7e94e07700d0d597878b92c52322
SSDEEP

384:f2zJdeJN2NJ2kczG3Uo3caY0u3usXM8R5cXX4UHfwEPdh9saeUu6FcZvIvfA9S:f2XON2NJ2Dy3UVaU3usXM4SZPdh6afEa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/USPS_Print_Label.exe

Files

24fbb3fdadf3c91d97aea66debc5ef3b
.zip
USPS_Print_Label.exe
.exe windows:5 windows x86 arch:x86

b5f14f56bddb8591014eb4efdc1e97cb

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadIconA
LoadCursorA
RegisterClassExW
IsWindowVisible
BeginPaint
WindowFromPoint
SetWindowTextA
EndPaint
CreateWindowExA
ShowWindow
UpdateWindow
GetMessageA
TranslateMessage
DispatchMessageA

gdi32

SetRectRgn
GetTextColor
FrameRgn
GetStockObject

ole32

CoInitialize

kernel32

SetFileAttributesA
GetEnvironmentStrings
GetStartupInfoA
GetExitCodeProcess
GetEnvironmentVariableA
HeapAlloc
InitializeCriticalSection
EnterCriticalSection
LoadLibraryA
GetProcAddress
GetDateFormatA
GetThreadLocale
GetTickCount
HeapCreate
HeapFree
LeaveCriticalSection
FreeLibrary
DeleteCriticalSection
HeapDestroy

Sections

.text
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ