27032025_1542_27032025_order452000739355[.]zip | Triage

Sharing

General

Target

27032025_1542_27032025_order452000739355.zip
Size

528KB
MD5

8e78bb60b94d34f964081dfd781c85d4
SHA1

952d964f5cc3505f10462598775568a8e75ab3b4
SHA256

e1d702b919e66b8ed54a4f95e085e8f08ec1fc931b742d8037c085282afb94ff
SHA512

83361633863097acae65b2d8f891c0fe690b1fae435f5ca507885dadb77149319db6f3abb0a116b6bd337c95eac671df623fc523310c6368c0335b154376b468
SSDEEP

12288:9Qcz+apFS/J5UJXs88Xg8TQ/lt/knGWQpn/fWgQ9sqIxoMJxqMU+7:9Qcrp2J5actXgR/lKFQpX9Q9OxNWMU+7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/order452000739355.exe

Files

27032025_1542_27032025_order452000739355.zip
.zip

Password: infected
order452000739355.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 637KB - Virtual size: 637KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ