SHIPMENT DHL DOC IMG010342024[.]exe | Triage

Sharing

General

Target

SHIPMENT DHL DOC IMG010342024.exe
Size

865KB
MD5

56beb6709b0a9e5d6536aa9bd8233fc3
SHA1

6b92fcadd893570f4c5dca4e37b5316024ca09ea
SHA256

50933a6f60adfa71021386f9060bd9134b9023713ac2f38ec1587b6967442417
SHA512

cf559fc52f07db1215fe4a07cf0ad9b63463691b63296a121286aee224d97ea865a87758a3af47b9f7999adcf99a1a5e0d27589fae4126d9e72f65c8392f2df9
SSDEEP

12288:CQHBXWcXFX2ojJGZ6YZaiw2ilZbILZDupmSTL8YenoYkvK24sF9m7PHN:BHBGcXxHJGIiw2Q8LYmS38y4szg/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SHIPMENT DHL DOC IMG010342024.exe

Files

SHIPMENT DHL DOC IMG010342024.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 862KB - Virtual size: 862KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ