Static task
static1
Behavioral task
behavioral1
Sample
Shipping Docs PO#QSB-8927393_2324, QSB-8927394_23-24.xlsx.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
Shipping Docs PO#QSB-8927393_2324, QSB-8927394_23-24.xlsx.exe
Resource
win10v2004-20240709-en
General
-
Target
Shipping Docs PO#QSB-8927393_2324, QSB-8927394_23-24.xlsx.exe
-
Size
719KB
-
MD5
6a0d72909ce116cc9fc982d7f0345366
-
SHA1
2eba377ff9b45dc37aa4360675bce73c19a482df
-
SHA256
94d5674b6fdd921ee1e14693e00a968ae80d70cb19197f72f53c1e947d26ffb2
-
SHA512
b9c2a0d1d1a73c3b8d683274ebe5c440ddc11369d456db8aa4e95cf4bf4d4b0fb95c26bd1a0d9615c7ebf1bd4cb3ff1ec41e7b63a467adb8b5ec437f16277525
-
SSDEEP
12288:mYYVK+orvxL/AO+PZxISXk3EvN2TfLHDGCrhrPrR5m4WNbUC1lQPJuOTU9:j1+KL/9+PIB3EM/HyCrJFs4WNQN
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource Shipping Docs PO#QSB-8927393_2324, QSB-8927394_23-24.xlsx.exe
Files
-
Shipping Docs PO#QSB-8927393_2324, QSB-8927394_23-24.xlsx.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 696KB - Virtual size: 696KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 21KB - Virtual size: 21KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ