0a6892cbb2c192be41b1624c31e7437b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0a6892cbb2c192be41b1624c31e7437b
Size

845KB
MD5

0a6892cbb2c192be41b1624c31e7437b
SHA1

e70523faae09482fb9d073d5f6a21361b7e43c4c
SHA256

00801780bd75ac598c4ae00d3ab975cb0771781e0f26afc52bcc8fe570f5ad09
SHA512

9d5d207243d97b829f8be4a8960a48aa888f275e941918a5f1ea4ea68e3d453a2de24b8094938f54b24bdc06625682a72cb626f566bc104408724f34b9411563
SSDEEP

12288:7IQ9b4hE+o61SKcm8+MlaPwZuMBdrEBExgU0w9fEIxjWmP0HZnaZLKE1pGKnO:cQ9b4+/wz6aYzBzgUniIxBP05oKepGQO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/Invoice for Authorized.exe

Files

0a6892cbb2c192be41b1624c31e7437b
.eml
Invoice for Authorized.lzh
.rar
Invoice for Authorized.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1008KB - Virtual size: 1008KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 75KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
email-html-2.txt
.html
email-plain-1.txt