35115018ce2a2d40dd80da9cbecd2ce5[.]bin

General

Target

35115018ce2a2d40dd80da9cbecd2ce5.bin
Size

544KB
MD5

cf1e5ba4d015f42b30cb343e16cebcb7
SHA1

703cf46f49b425d5084583c21b4530f7c1da194b
SHA256

07048ca5d4ab0fb6e739353a66b2082ac1c970bb2ae1b3f28bcc1b2043b47e16
SHA512

4dae0cae21a8ae6e1606da52dd8c8e70531b86bd81ee79be15dc5bfc08dbaf2a21c6e27cf52a7fdc05836a38bf029c5fa9aefc6e2b95e3620dae4955cb83a778
SSDEEP

12288:UhvYsPz3ex1mvwfuCnFhAvQoXcnRuQIF9/X9be/xBvisIF:YvRb3exqCIv3ERVi9Evis0

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/Revised Proforma Invoice WSI116850PF.exe

35115018ce2a2d40dd80da9cbecd2ce5.bin
.zip

Password: infected
89d3304e46cad5fed4d35746bff5469289d93dc9792ea85ac07d5e5452a2d972.zip
.zip

Password: infected
Revised Proforma Invoice WSI116850PF.exe
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 883KB - Virtual size: 882KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ