DHL Shippment Notification_Pdf[.]exe | Triage

Submit
Reports

Overview

overview

Static

static

DHL Shippm...df.exe

windows7-x64

DHL Shippm...df.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

DHL Shippment Notification_Pdf.exe

Resource

win7-20220812-en

formbook d10a rat spyware stealer trojan

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

DHL Shippment Notification_Pdf.exe

Resource

win10v2004-20220901-en

formbook d10a rat spyware stealer trojan

windows10-2004-x64

8 signatures

150 seconds

General

Target

DHL Shippment Notification_Pdf.exe
Size

1.1MB
MD5

b619f997ab8438ff21c618fb65ebb8f4
SHA1

f9487f12db87f8ff926f8f2bb08086a660c24844
SHA256

369d9c19a6f8e9b3fc88bb922fd7253a50b5fc90b1691972bf89748e19a0ff81
SHA512

1c2ebb6bbd39175816acd4a6a16aba0cc9e50d3a147cff4c8874a33590030ce38af92943e970a74c4a2afa0cee211570f140b009d7eba5cfb63d6e5adc585e94
SSDEEP

24576:7xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxNussypBxiPnw:ZiPn9rs0Fdj

Score

N/A

Malware Config

Signatures

Files

DHL Shippment Notification_Pdf.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy