MalwareBazaar[.]1 | Triage

Sharing

General

Target

MalwareBazaar.1
Size

26KB
MD5

f47f8689fa1a0fd966b51b37e49b4df7
SHA1

b70ffec11257beba43f3301a60092f461d17aecd
SHA256

0116627fbc1a3a3f6516259816efa8919866cbef48ae91af49eeee7f6d35e661
SHA512

05ec7d36b1c32410da024633191f462dd90ff94af72c7eb534fd1b6b516663d190a58255dc38f03b9b8223caef1d6d5df03934e956510fd35068f891771fda7e
SSDEEP

384:6i+iMpKBy9pmRrj6nt8PDCKzBqkNiy+s8hfgk7LBKgfrFVbr4NE5vRm:6NiYKIIRrmnt8PDTi9s8q4tffhVbL5Jm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/TNT Shipping Documents.exe

Files

MalwareBazaar.1
.rar
TNT Shipping Documents.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

PDB Paths

C:\Users\Admin2024\Desktop\Outputs\Doli.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 63KB - Virtual size: 62KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ