57d7bd758bf432050f65a0df7cc3b4b9[.]bin

General

Target

57d7bd758bf432050f65a0df7cc3b4b9.bin
Size

503KB
MD5

81572abbe1c1d31a1f9d531937484244
SHA1

028722d148614e7b03dafa50c2070b5fb837eb3f
SHA256

4253ad86765c8e4330ec5c36b119d4ddb790caed7c32bd8bf54ac28dc4812e41
SHA512

f1db547cae0ea064f21e847a07ced964a7968483434bd36fb67dbf6ed8ef30ae6e2cffab0d705e800458b86ec7e36f5f42be94ab248432b016c8c0223a7be493
SSDEEP

12288:n3YAgzUUj6ewoWTjaNVv6ky5BgAnSQEyvvd4ytj4dmkiX1w8:n3JlUuewoWTjixJy5WqSSilE1w8

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/Swift_copy.pdf.exe

57d7bd758bf432050f65a0df7cc3b4b9.bin
.zip

Password: infected
fe32b58a16f41d37ac8899b5f339cd2602a9cdab167614248bfad09e89392605.7z
.7z

Password: infected
Swift_copy.pdf.exe
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 587KB - Virtual size: 586KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 189KB - Virtual size: 189KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ