DHL Shipping doc[.]exe | Triage

Submit
Reports

Overview

overview

Static

static

1

DHL Shipping doc.exe

windows7-x64

DHL Shipping doc.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

DHL Shipping doc.exe

Resource

win7-20230220-en

agenttesla collection keylogger spyware stealer trojan

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

DHL Shipping doc.exe

Resource

win10v2004-20230220-en

agenttesla collection keylogger spyware stealer trojan

windows10-2004-x64

12 signatures

150 seconds

General

Target

DHL Shipping doc.exe
Size

728KB
MD5

62e02279007c5e1ac7ae6716c1313549
SHA1

1b939f220635f802f1d7837ca004c0ead91a1864
SHA256

b7e023a783bf7efa020786b9ba5c72c5bb507d0e98b53d57e8895e49fc91032e
SHA512

4ebf9bd8c640b66d8d160eb66ced88ee03b954cb51c661dee9727afbd50fdbc58f3e1ae1ac0f43329331bd2778cea5e8c942b0eac9890cb3aa4b2bb31401a450
SSDEEP

12288:fUTaNHMH91DzZGzG88f6R73Wx+6hFFNwMayGr0/hEsgU0pTFq0:fUsHMd1Dtyd3WA6hFwtj0OlNrt

Score

1^/10

Malware Config

Signatures

Files

DHL Shipping doc.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 721KB - Virtual size: 721KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy