Waybill_Receipt DHL4704321510pdf[.]exe | Triage

Sharing

General

Target

Waybill_Receipt DHL4704321510pdf.exe
Size

137KB
MD5

cda30bfff7b40bc9ab82ccae718cf8f0
SHA1

8a88dce05ce676b70b96292eba1dc38c8dda2554
SHA256

d7d5d035494e9a243f80cf2f88d2362f31d0adeafa8af33693d1a196bb58c754
SHA512

548c08cfca3f495308a49d7af31083fb5c40c1a4ae0d92946190540ff315a80e72c7d7184147f6371c02572f2f8fb5d1b98a4f5f3e5d21b70b74c2cce0b383fb
SSDEEP

3072:M64/4iUSMBl+jh3BvkA2GSFVfxpuu6xr4o3qd:M64/4pSMB83BIXxpHo3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Waybill_Receipt DHL4704321510pdf.exe

Files

Waybill_Receipt DHL4704321510pdf.exe
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 102KB - Virtual size: 101KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ