DHL BL Draft copy[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

DHL BL Draft copy.exe
Size

805KB
MD5

a21a1459e1cdc8ea8640f9b17b631434
SHA1

dc3c38286fd21a9acc4ac28879b9b1bfb45fc924
SHA256

2a110004707e485879fe94470e04a557f1c839437e8711521273a7f006a1b197
SHA512

b8fc3774e1005bf40791c610a8261f8abc4def368a125b6919aaba2d47be6855465bd993b191fa809023196d9b524bbe1d379383a5c6e31e30beeece70ca5360
SSDEEP

24576:GKCfA7phi6bi270CxZFFQVokKpmsZ5OBneKqKoe:GKw2phjuCHFOVokImDtqKoe

Score

N/A

Malware Config

Signatures

Files

DHL BL Draft copy.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 583KB - Virtual size: 583KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 220KB - Virtual size: 220KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ