DHL Express Receipt_60159514460[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

DHL Express Receipt_60159514460.exe
Size

599KB
MD5

14faed09e5089fbcaf8323e992d02505
SHA1

68251b7caa537b75020ce418dfa7c21113f53f61
SHA256

131c69adaff732d878e0396149be53da15e8e155daafe995259385c6c28f605b
SHA512

bb8e468b432fa1738dd63143d45e09ccdfdb149dca8db3ec6a2ea0d2e996fada5d4ed1dc013a41fff686ba0d471fca315a4795f4fdf0761f7da491d958834f10
SSDEEP

12288:U6qXPIDl+C01SNPUBb65sLYkZZgpFTK12yLhVUUxu1kGvw:JWGe6/k7wFYVUeGv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
DHL Express Receipt_60159514460.exe

Files

DHL Express Receipt_60159514460.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 597KB - Virtual size: 596KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ