SALES CONTRACT (DRAFT)[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

SALES CONTRACT (DRAFT).zip
Size

601KB
MD5

d6c2dd0b6fce03b1a915002ea7b5c611
SHA1

edce98bcbd6af7563500e171b7632a6bb14ffb6e
SHA256

b9d943555d3012cff3b75ada1041d56019f0b262af9ae3e408a0ea2f280d9096
SHA512

e4649aab1d9e0b0a49a7b213b1d1b07315906303c397ba7d4beb0c698bcd913eeccad8897319b9fbb30c89cb4a27bec85fe3fecc141592a782667fb388426d98
SSDEEP

12288:478XAvRRKNlj64cu14jtkYZPtCoaYu1AFvRw2ZFoYz4LbMAzyJcs:4oXKRRDCqtkCCoEqFe2ZFB4N0J

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/SALES CONTRACT (DRAFT).exe

Files

SALES CONTRACT (DRAFT).zip
.zip
SALES CONTRACT (DRAFT).exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 626KB - Virtual size: 626KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ