FedEx Receipt_AWB# 102003550412[.]exe | Triage

Sharing

General

Target

FedEx Receipt_AWB# 102003550412.exe
Size

722KB
MD5

e1daed4629962e7f857ebcfb59652c76
SHA1

aa178ed13192dc28da12bea57045cfa680316831
SHA256

2c63d5c9bece740d05d08aae01b061b9845ebc9c61aaa31417e79b59c454d7be
SHA512

4aa588ac86e4bd0590b048ee3ff0ca7b0b9de6eb1313b18f78a6dd08ac316cf8ef1bfaaf375ff4aeb71d2b4e6acb09a1084c93782c9598b0d744cb22474c6143
SSDEEP

12288:0iBikuPyVJm8iP9XXb4Oq2laC8gkwufIHU8+4tH5JIwpEwqBFGbx60SNjsVhYLsl:0iBiTaVJBiP5b9hla+PuYPH/pHqCfSS8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
FedEx Receipt_AWB# 102003550412.exe

Files

FedEx Receipt_AWB# 102003550412.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

ifsm.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 720KB - Virtual size: 719KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ