abe82c04c652b78d48bd0ef9aed89d0f7dc4684f7c9be6120da223e3aa316cd3[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

abe82c04c652b78d48bd0ef9aed89d0f7dc4684f7c9be6120da223e3aa316cd3.zip
Size

681KB
MD5

5d8cc59875c67f299967a273d4fcf73b
SHA1

9187d78fd551439890ce657e60dcf4d4bd22bf37
SHA256

abe82c04c652b78d48bd0ef9aed89d0f7dc4684f7c9be6120da223e3aa316cd3
SHA512

12269b26cdb1b2c1ae032587374f597e77266e0dfb8a535cd7411b542ee447e83314230d929f812dfdb8b36bc8e009ec300ac7b3ec37e97d2955fdb9c7fe7794
SSDEEP

12288:7YRkFo9XGHz3Mo4w7i9NYDz2Rnrtg6De/kqg6x/Pe496yZHK:By9c4Mi9WeRrSsqv55K

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/DHL - OVERDUE ACCOUNT NOTICE - 1301669350.exe

Files

abe82c04c652b78d48bd0ef9aed89d0f7dc4684f7c9be6120da223e3aa316cd3.zip
.zip
DHL - OVERDUE ACCOUNT NOTICE - 1301669350.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

oZr.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 691KB - Virtual size: 691KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 168KB - Virtual size: 168KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ