DHL Receipt_6005195460[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

DHL Receipt_6005195460.exe
Size

662KB
MD5

5cbdef2df4eb6cc0622a4a2c399a6b0c
SHA1

88a5012d2d83c2aef883f20ebde6a6335f5f120f
SHA256

690bf56c513b3b1e8ef7eb1cabd0e7ae3caf33e6d4442264ec5b17c74b9c5d92
SHA512

92208c9bfb9b207a0200807f5fa7c678be84b25c8f6c0e9ec05c5337c27696135c1225e6a5811c9872cfc2e66ecc1c04142e88bf613720ab6d537b1f620cf2a2
SSDEEP

12288:nUPWR28Le0cY+Yg9fb9eB1KHHsePK5CQK30XAMhfuDYPDJOydWqesc:nY+xL9Rk9CsHzKPK0J2DYbsysqu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
DHL Receipt_6005195460.exe

Files

DHL Receipt_6005195460.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 656KB - Virtual size: 656KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ