df19a8898320e111d23787be6bfdefd7a798b627d8f568ba5e1d5375ab80e11a[.]tar | Triage

Sharing

General

Target

df19a8898320e111d23787be6bfdefd7a798b627d8f568ba5e1d5375ab80e11a.tar
Size

97KB
MD5

02cf353025e95d95dcf529a983e63997
SHA1

c66854ab5706a1e5da6a4370012c8bc36329ed7e
SHA256

df19a8898320e111d23787be6bfdefd7a798b627d8f568ba5e1d5375ab80e11a
SHA512

76bcc2beeb86176ccf2507bd77bf8b91c2dbe4796c28ddb195c8b050be4579bb2870a26907f88d0122709a6307fb5d76815f51be7594767040c8e7348d4875a0
SSDEEP

1536:vTF1ORTsHs6w0LmCDBwbt5lMLg3rLbDEaL3mlbv2JweQeZYbp6QlUk:rF1ORTsHsi6CDWMcbLbAu36xeKt5n

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Shipment_Arrival_notice_for_Order_ETA_12_February_2023_Shipping_Documents_Telex REF#7376373.exe

Files

df19a8898320e111d23787be6bfdefd7a798b627d8f568ba5e1d5375ab80e11a.tar
.tar
Shipment_Arrival_notice_for_Order_ETA_12_February_2023_Shipping_Documents_Telex REF#7376373.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 93KB - Virtual size: 93KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ