Waybill_Receipt DHL4704321510pdf[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Waybill_Receipt DHL4704321510pdf.exe
Size

137KB
MD5

5719d83371c60a160b5a190f8416db9a
SHA1

4f20520e937f8fd677864eea67ce0381a6b884d8
SHA256

9cdeec4d88b2d80fffb96e6de77a50b0c0d086b5dc21c4757a703e8f445b46e8
SHA512

5db61688510db904ee2b5d7bdbffe37d8449b0b381bc1459fb6c9f5ab34bd96918116a9dda9200517a4ad03a67599f636223911dd39d0247fa673bdc0aafd823
SSDEEP

3072:M64/4iUSMBl+jh3JvkA2GSFVfxpuu6xr4o3qd:M64/4pSMB83JIXxpHo3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Waybill_Receipt DHL4704321510pdf.exe

Files

Waybill_Receipt DHL4704321510pdf.exe
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 102KB - Virtual size: 101KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ