DHL Parcel - SGS[.]exe | Triage

Sharing

General

Target

DHL Parcel - SGS.exe
Size

707KB
MD5

df16bd302d7399c046cb139483ad8999
SHA1

4e153fc531166101822d64ed42a3871b406ddb32
SHA256

a53c05c8b0af4a3ba533e91ce92cf6f438df667a2ab15bccd7ea7a743eaeea29
SHA512

85e2086650b4dc673f1ce25e46716b1e8fb87af4dd340bcc892347ecd5c62d08c7149551af8cb9451832053cdc796b7e5eef5c5a6caafb800ee08fb2415a5a87
SSDEEP

12288:icxAckjh4OckuLtvdau4E/eBFP+iCP0KbvIGCLpeoAoeK9OUNJnwtyLjw5wVd:hkOtrLR4UYFmt7bfCLphAop9hJnwtyLj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
DHL Parcel - SGS.exe

Files

DHL Parcel - SGS.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 686KB - Virtual size: 686KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ