DHL Air waybill[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

DHL Air waybill.exe
Size

773KB
MD5

50ba772d141d2813358a9a9ac276a1f3
SHA1

4535636fc347ab657720ec2ca57271c0a7b0faa1
SHA256

f2f31cd849a94cab65d37c4a33b81c479a074c3b95edfc3431548ab755888dd2
SHA512

286c6c6048bca44a45de943c24997d723bf90fb68a376a8a7006dd344a2cd032114616ba66449e878dfca67f37004c7fca6101e8f915ebbef905ba5fdfd54091
SSDEEP

12288:os6BmMNZqS+n/zo4zp+cx/0282C6vDtAwNLJ57lmMphUxI2EAmD:imMNZqS+n/04VVx/C0vDtA+LJVQMUn

Score

N/A

Malware Config

Signatures

Files

DHL Air waybill.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 704KB - Virtual size: 704KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ