DHL PO1001910 Sample Arrive[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

DHL PO1001910 Sample Arrive.exe
Size

846KB
MD5

a179c1bdcf37397d4a5886fb100a81b7
SHA1

52febb2540365a4e199cab9056053be1bca82b81
SHA256

12f259e0b178f9b1d71fcd38a50e700a8dafe19b0eb1d6767fd097b33f83614e
SHA512

4778089e78039a2d19f812e964d0e8b04bababe7542129c7300a82ec74936558e4a4a8d2059dd48549cb9f693062869a29f2b49b30a458ee6338383adf406b61
SSDEEP

24576:AIJFGLdpkBDXxPEdcRIDsqGmh32gRMFlnbW:AIJFGJcDXxPEdcRwGm8gRM

Score

1^/10

Malware Config

Signatures

Files

DHL PO1001910 Sample Arrive.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 844KB - Virtual size: 843KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ