DHL Express[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

DHL Express.exe
Size

292KB
MD5

fa79fabb2d811a14fd5b8a6614ab77e6
SHA1

0e61cfa5525bbced902f0df595b1f9f9959fa56f
SHA256

0067b252ab478516ec30b56fbb160b7210083c5d10f1b06c4233a3f92bdec28a
SHA512

b87af3f30fc255e5a8cad1f0657500e9b373f299101b4050f86dfb3e40fb1174e08cb0d780667887ab642fc1924a296e3b6fe98cb7338fce4efe68c184178f2d
SSDEEP

6144:WPbLJvaK0pjj5iQMz1kOIFuPS0FruvdoOOLMiMAqOLsKqJEJrPwvm2Oh:WjLQ/1seXYruvd8aOjSEevm2Oh

Score

N/A

Malware Config

Signatures

Files

DHL Express.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 284KB - Virtual size: 284KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ