275388ffad3a1046087068a296a6060ed372d5d4ef6cf174f55c3b4ec7e8a0e8 | Triage

Submit
Reports

Overview

overview

3

Static

static

3

Alibaba.co...df.dll

windows7_x64

1

Alibaba.co...df.dll

windows10-2004_x64

1

dhl_expres...en.pdf

windows7_x64

1

dhl_expres...en.pdf

windows10-2004_x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

Alibaba.com order# 03284983240830433498422239328759576898-390325025958245048474-7494045958540499.pdf.dll

Resource

win7-20220223-en

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

Alibaba.com order# 03284983240830433498422239328759576898-390325025958245048474-7494045958540499.pdf.dll

Resource

win10v2004-en-20220112

windows10-2004_x64

0 signatures

0 seconds

Behavioral task

behavioral3

Sample

dhl_express_packing_guide_en.pdf

Resource

win7-20220223-en

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral4

Sample

dhl_express_packing_guide_en.pdf

Resource

win10v2004-en-20220112

windows10-2004_x64

0 signatures

0 seconds

General

Target

275388ffad3a1046087068a296a6060ed372d5d4ef6cf174f55c3b4ec7e8a0e8
Size

1.4MB
MD5

2ce1c17b5a46a7fc42f98c67edf2e409
SHA1

f0f8095dce21916470f0aea2b9d0b8486038fe54
SHA256

275388ffad3a1046087068a296a6060ed372d5d4ef6cf174f55c3b4ec7e8a0e8
SHA512

727888bf713962de13ba00d286c371f321f6799cf1b1ece30a85d859d9a5fdf15133dd7bebf0a95c50e38a9d99a1c30765a4a11338a01981fe3c92980cf14c87
SSDEEP

24576:XHmUZkRDhluJ8e8wXOxy8rXoH4qEUhcE3PPrrf/4YeRKmoQEO6oLBJl2C1:56seLwXOxmsUX/PvoYL3QEO6o6A

Score

3^/10

pdf link

Malware Config

Signatures

One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
pdf link

Files

275388ffad3a1046087068a296a6060ed372d5d4ef6cf174f55c3b4ec7e8a0e8
.zip
Alibaba.com order# 03284983240830433498422239328759576898-390325025958245048474-7494045958540499.pdf.cpl
.dll windows x64

5ee4c645a2c1d1498e2e02d94b61b09d

Code Sign

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

user32

DrawCaption
LoadStringW
OemToCharBuffW
SetDoubleClickTime

Exports

Exports

CPlApplet

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 65B

IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
dhl_express_packing_guide_en.pdf
.pdf
- http://t
- http://www.dhl.co.uk/en/express/shipping/shipping_advice/terms_conditions.html
- http://www.dhl.com/en/contact_center.html
- http://www.dhl.com
- http://www.dhl.com/en/express/shipping/order_supplies.html
- http://www.dhl.com/en/express/shipping/find_dhl_locations.html
- http://www.dhl.com/en/express/resource_center/ecom_tools.html
- http://DHL.com
- http://dhl.com

© 2018-2024

Terms | Privacy