cb00bcbda04d9001fba05a6328307421c27b18ff9b34d7083ed431c1002ccb7c | Triage

Sharing

General

Target

cb00bcbda04d9001fba05a6328307421c27b18ff9b34d7083ed431c1002ccb7c
Size

58KB
MD5

21c5c759ad119c1b7c18f8b4a1e1c522
SHA1

946668cc165142b968bb73009eb3a27f93626d21
SHA256

cb00bcbda04d9001fba05a6328307421c27b18ff9b34d7083ed431c1002ccb7c
SHA512

03a0a14c271960d0cde959f20e55f1d52d2438b0940e5916d34d51cc3927dc2988e856e21a51adf479ffb1b07a9f4017a8f346cc6644cc3dfde881e643eaad21
SSDEEP

1536://kGAZTIqSWq6zONu+xIylEEvOxyyBLA8Jv3nLOp:cqWq6zONuV/EvOyyBLA2vXLOp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Tiajin Haizhi PO 1509 ETA Sydney ASAP.com

Files

cb00bcbda04d9001fba05a6328307421c27b18ff9b34d7083ed431c1002ccb7c
.zip
Tiajin Haizhi PO 1509 ETA Sydney ASAP.com
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 115KB - Virtual size: 114KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ