DHLAWB08142311[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

DHLAWB08142311.exe
Size

122KB
MD5

d53ad1ff0ceaf47f7e38a5f59c391014
SHA1

422b2d752501f38d3ea3669bc5c9e2e355b2c403
SHA256

9c67c0c1497538e6834027b2aa6e057d67888f240441a17192d149715f0e8dc9
SHA512

f6d5aef9fbf8196b0faf4095ea4eee875b583c12d9b8492fadf28fb4ec39996c7d099beea1ec6fcdeeb4d716d92d1e1712bdc8d8f98d6438797a79f3bb58bf27
SSDEEP

1536:/m2dhjglfmlU/+a1T6uYR54XchGstFttDtt5U4d5scmb:/m2dh0ala1T6RRyXhstFttDtw4A9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
DHLAWB08142311.exe

Files

DHLAWB08142311.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 95KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ