nWaybill_Receipt DHL4704321510pdf[.]img | Triage

Sharing

General

Target

nWaybill_Receipt DHL4704321510pdf.img
Size

188KB
MD5

d97877e6e4838faffc8cc86541fa36a2
SHA1

b5ce082953d027cbb970582d2be28e3dcb066b5a
SHA256

e724d07cfaef54796894b9738d5a67d876bc31b12608e251b419b1c1f24afa53
SHA512

c5d07afd5fdb51875c9ad8cef89d7f43c89225ba8167917e10cd15ae6c1214257e2b7b5d96e805e18bccb25ddf6447c315572fdc871c262241d2616e91bbbe36
SSDEEP

3072:H64/4iUSMBl+jh3rvkA2GSFVfxpuu6xr4o3qd:H64/4pSMB83rIXxpHo3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Waybill_Receipt DHL4704321510pdf.exe

Files

nWaybill_Receipt DHL4704321510pdf.img
.iso
Waybill_Receipt DHL4704321510pdf.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 102KB - Virtual size: 101KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ