New-order2435446536353536[.]gz | Triage

Sharing

Copy URL Twitter E-mail

General

Target

New-order2435446536353536.gz
Size

407KB
MD5

5954febd0d9a917a9dbfb2d4f1ef41d8
SHA1

94c3ab261fc55aaf5437595f3f942b963c0e9460
SHA256

5290f75eaee4f9e55a563115a8000bdecaf4ce389b2c8e1ddd196fda4558c03d
SHA512

cc2ca26616d18c913c62020b84b7cde5d6defecf9d3ecbf2027bc614f7d3daaf76b6aadfe946b773ee4b36090bf4c4e4a02fbab8269db517214180711232b08c
SSDEEP

12288:DFvgug9r1LP7RwnAG9AnAeAGB2oyDtYMX9Rt4:DHgfhwb9uzBeDtYG4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/New-order2435446536353536.exe

Files

New-order2435446536353536.gz
.gz
New-order2435446536353536.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 659KB - Virtual size: 659KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ