0387ab4b6b5cc4cca1b4cf51d0356c4e[.]bin

General

Target

0387ab4b6b5cc4cca1b4cf51d0356c4e.bin
Size

577KB
MD5

eace175e3fba9687b233e3170c475128
SHA1

f3b414245ad3520d0e087c93986de86da45cfcab
SHA256

89b34372d1fa820db5c437cd76ecfbe5ff63cf47da044cfc222b8b5c80e1da4c
SHA512

2cc3fa9ca41f4fe70ad5b6ca168bbc3d93e6b6c7104469f914078e0301397dd9aedce442a1beb295268c41dbca8446d934eefcafe41d0417bec5aef730d1587f
SSDEEP

12288:zgPeB3DHyAoApv6VDY7M6mvNR0y+DR0C6cjfeUcKrSWd1OEUyqPc9N:zgGBfoA6V4d7DR0nccKGX7Pc9N

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/invoice copy.exe

0387ab4b6b5cc4cca1b4cf51d0356c4e.bin
.zip

Password: infected
9298465571a4a3e1edd7c7cbe93b40b00325c6a0ad5c3bca897e78fc0da1c137.img
.iso

Password: infected
invoice copy.exe
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 598KB - Virtual size: 598KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ