933e3d870698dd815959c353ad13dc6c[.]bin

General

Target

933e3d870698dd815959c353ad13dc6c.bin
Size

412KB
MD5

04ac537f45ddd5335976af4b1ef9f2cf
SHA1

275a771b0bcfaf7a4c5b71af277d3a6f55320e24
SHA256

bf51aedbf518fe0db898de07fc8938bb693faae1e221a6ed18adfa50a6c87965
SHA512

0e2f847e673634dc1f2634f7eabf13805482c14af9887384d6ebb72c3eb77cd0bf408c5a53f28a57fe5821944f9bb966c88eaf0647b7a704d58079f5a4665103
SSDEEP

12288:tfCqdmAs7aM0TRSV9yet+jmfYvrD1sTQvBrM:tfCiKtI4VAet+jmfYTYyg

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/BL#MEL2305053.exe

933e3d870698dd815959c353ad13dc6c.bin
.zip

Password: infected
1dc7ae8af7e0f4d735eaf0c3e55c0a1816d87c0d3c6d74e73b6005b3cc612ec7.lzh
.lzh

Password: infected
BL#MEL2305053.exe
.exe windows x86

Password: infected

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 534KB - Virtual size: 534KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 214KB - Virtual size: 213KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 38KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 137KB - Virtual size: 137KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ