Static task
static1
Behavioral task
behavioral1
Sample
DHL Receipt.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
DHL Receipt.exe
Resource
win10v2004-20220812-en
General
-
Target
DHL Receipt.exe
-
Size
876KB
-
MD5
eddb9b6760b873f3d34d521e477ce025
-
SHA1
0f948f0de6a327f094bfe78cffa67553761dbeea
-
SHA256
c201333fad1225eac836fad58bc37e183f272e0cf4a62d5754868097560dbc47
-
SHA512
f5af5466ee50cc51e93cc80d895800a1d162c9321a9e146769a962551bdde6aa4636f6a869b3ff14114ccd73b2630e079f320a34827e618092638b88b67e3f3d
-
SSDEEP
12288:AohEdeK4HTNvS+vy8kPjPw9oBTI4n5pFuy1:LhcbPwGTvnT
Malware Config
Signatures
Files
-
DHL Receipt.exe.exe windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 860KB - Virtual size: 856KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 8KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 4KB - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ