C:\Users\Administrator\Documents\CryptoObfuscator_Output\11GHDDFJH765.pdb
Static task
static1
Behavioral task
behavioral1
Sample
DHL Notificación.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
DHL Notificación.exe
Resource
win10v2004-20240802-en
General
-
Target
DHL Notificación.exe
-
Size
256KB
-
MD5
c529ed4069136f119c4f21cd75ff8fe4
-
SHA1
62e1889d1da4afbdde8a065f779848357e5ef952
-
SHA256
cded13414651803942678e6665551aa549617eb84f0e21651351cbae5ec38570
-
SHA512
a592ce0f263d04225a2fba1a6bf476bafde58b277fcfd9537fb14d9d91abd1d1421641922803b513530a1d3e57c7a7a73c67d8ebc93df66be44ad48865908c22
-
SSDEEP
6144:7zDo+AEvedfP5BtRSdmqjtnhziIVxqQW35vxqrs/nIG:7zD6E25Pvpqj3FNW35vSs/r
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource DHL Notificación.exe
Files
-
DHL Notificación.exe.exe windows:4 windows x64 arch:x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
Sections
.text Size: 219KB - Virtual size: 219KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
.rsrc Size: 35KB - Virtual size: 35KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ