bf856a1146fde1c0700f849e9c371972[.]bin

General

Target

bf856a1146fde1c0700f849e9c371972.bin
Size

760KB
MD5

31f4be4bab3cd6769a533aac57910ca6
SHA1

573637d1c77ebe341b81a977205819d9ef53e128
SHA256

dcac9b83abce7499aec215d2ab2b64a3c3ecd1099ed8f8dd37ae7146886450d4
SHA512

58b6f57b86e04a3a82a57d6cb22109b0b20f09b3372212433d2ac589a6f992c498b751bc2f404ecf81c2dc387f3217f138a6b399a5a6d1adc2ba01c588a2c9c6
SSDEEP

12288:OHnvpzjYBLFKDlU/vp7+n1+FveZIF+3ccf3g3HNR4KagnTW1QT5naEtMkwz0Xto:wvY+Dlev8K2ZIFeBfQ3HBagnTyQ1n/M1

Score

3^/10

Unsigned PE 1 IoCs
Checks for missing Authenticode signature.

Processes:

resource

unpack002/Packing List PDF.bat

resource
unpack002/Packing List PDF.bat

bf856a1146fde1c0700f849e9c371972.bin
.zip

Password: infected
2725e2b522f92e0a3a5155ec773c5c40e510f4b98e7f40e44d91584037bf8310.rar
.rar

Password: infected
Packing List PDF.bat
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 808KB - Virtual size: 808KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ