DHL Shipping Documents[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

DHL Shipping Documents.exe
Size

648KB
MD5

84ceb941165bd96a3297f8b6cff73557
SHA1

ea0ff61c392d8a26e585a6600bfff0ff108426e3
SHA256

ed5ba1279fc7507c374a5efe1af24535962d5fd72626be44d7842146c032dc48
SHA512

83d2fd36fe66c6ddc3763cfcb9bbe2cfb0fe0428fb849fc9447eb160c2997a53f69bb29574078eccf842083604f6987db66992d3268554120dfda0c6b5bd67cc
SSDEEP

12288:VRP2B0xTGlxNqvNu2hZ+nUEsn9Cr8gyllr3oxK1nxmv6RlO2BZ7gKmzDJR:jPLaVUH9995gyllH1xmv6dY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
DHL Shipping Documents.exe

Files

DHL Shipping Documents.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 624KB - Virtual size: 623KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ