11b67b094982ad3471970133de1fc3a5[.]bin

General

Target

11b67b094982ad3471970133de1fc3a5.bin
Size

463KB
MD5

df55abfa22d87e43eb187d8d8dd57cb9
SHA1

35a680873148de52a349dc1e22fea1dd2f1b0d15
SHA256

84b090e888ba1883c9138d752c73c73000a8de28abfd9e0477d3e7028edfaf22
SHA512

705ea4eec0c3cd478283310e020adb16e199bfb31a67de2aeb225a6fa718710c2a2232c6c590ec960eee324065439dd4103da26d1db8ec05c0aaf073ec196beb
SSDEEP

12288:HHFGh2f/Rj4wwZXpoNc/75aVDikwzVXQIU:HQ814RIw+DiTav

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/FB-108N & FB-108NK 詢價 - 田勤.exe

11b67b094982ad3471970133de1fc3a5.bin
.zip

Password: infected
d158b9c86d15735ad680bb854a398c63ad9ff4ae7bee57ac1c495cd46bcedb57.zip
.zip

Password: infected
FB-108N & FB-108NK 詢價 - 田勤.exe
.exe windows x64

Password: infected

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 474KB - Virtual size: 473KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ