8104a31ddfae4f80b30ae113fd92d0b6df1849f2f277c278baf8a868b1c7cbc2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8104a31ddfae4f80b30ae113fd92d0b6df1849f2f277c278baf8a868b1c7cbc2
Size

266KB
MD5

8063abf467cda7cfc930e71c574b2cf8
SHA1

aad55cb5c09a6c722336cce9b0bf8168d0551e96
SHA256

8104a31ddfae4f80b30ae113fd92d0b6df1849f2f277c278baf8a868b1c7cbc2
SHA512

b7ed24b5e8afff1d832a17ddfd3676816d1afd3a18b1d23a2e4573d097ece64728d67bb1967eb562c6f819ffc60a89c224c35e545019b4be53047734e50f114d
SSDEEP

6144:qzqKLhdo2kNzd13taN4ae5k3GIQyzyf2ht0JefMboB+KF:jsXhslk3GIQyzmktrfnB+KF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/HBL- Air Shipment PO 272693/HBL- Air Shipment PO 272693.xlsx.exe

Files

8104a31ddfae4f80b30ae113fd92d0b6df1849f2f277c278baf8a868b1c7cbc2
.zip
HBL- Air Shipment PO 272693/HBL- Air Shipment PO 272693.xlsx.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 358KB - Virtual size: 358KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ