C:\Users\computer\Desktop\Outputs\EemsbncoNl.pdb
Static task
static1
Behavioral task
behavioral1
Sample
ShippingOrder_ GSHS2400052.exe
Resource
win7-20240221-en
General
-
Target
ShippingOrder_ GSHS2400052.7z
-
Size
65KB
-
MD5
e8c9c4b2977e55ce7a38b2367a01ad0e
-
SHA1
c9489cfb5bd92a3f1b8321ac5ece44fb06f08b02
-
SHA256
aec64a639bd0aedb740d3fde3857f4e3aaa863e2a46a56da759b6aa66e079cc7
-
SHA512
018faf8b7ec56fad5c1f51f457b4f30cf850b4129c29c60304b087b18e36a35699ca80871c99ff87dac71b288f4ff80db6d1344d498ff040b5307529d0bdf8ab
-
SSDEEP
1536:XhuLIM0SduMwK4k+nxLSjuob5zfpWkQgT1Sup4ShOShwFuFeuQhB7fTL27w:MGSduMwxxKuo/JSbWlhwIFE7fTuw
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource unpack001/ShippingOrder_ GSHS2400052.exe
Files
-
ShippingOrder_ GSHS2400052.7z.7z
-
ShippingOrder_ GSHS2400052.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 184KB - Virtual size: 184KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ