DHL Shipping AWB Documents[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

DHL Shipping AWB Documents.exe
Size

936KB
MD5

da4b64c9b99a099fc8f1e776a51c89fb
SHA1

f978f04c41cd2a4595a162217f32f86700715428
SHA256

122c811019fc78d9c872d90ee4b7d21d923a6539980bc30f9d246b0b66003642
SHA512

c1541db0511d28f0c791a829d63325a895528d8d427581375c80d1238ecb9e09ff360357d442cd4eb499cd7cbc3f689cdbc1ad3ea8f9205df9d68d50ca305b98
SSDEEP

24576:yS1t1zQwT6Qrja6XIgwXL5xpvtkOsHzdkVs4GH:1ZzQk6QrjAlXrAz2Vs4o

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
DHL Shipping AWB Documents.exe

Files

DHL Shipping AWB Documents.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 933KB - Virtual size: 933KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ