AWB DHL 7214306201[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

AWB DHL 7214306201.exe
Size

664KB
MD5

4f984c1bec73fd3bbfd77ec9b249baee
SHA1

ff9f72b549f5241cdbb42e9fea5bcace4a65369e
SHA256

9f67e7fe9d42fd8fdb38ad26d81b93a2d6bf143e3ca5b7ca72733605b2dc2f5b
SHA512

6217ba3537a1c1589d43ed1a2087ff4e4abd5f84d60551b6f644d95d65f031412a9219488e3ae009cc81c08878f765dea2bee25f924167be1b70903448d410eb
SSDEEP

12288:I+1BYQvjOl3PjxzH6GBAtiq8Ol6ev1Py4tF+SpsohquUH9eACv8NWb:I+1POlB1BTq8cLvlyI+aqBHQACvL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
AWB DHL 7214306201.exe

Files

AWB DHL 7214306201.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 662KB - Virtual size: 661KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ