cee3497a00f81f795eab4b3d6472f9af[.]bin

General

Target

cee3497a00f81f795eab4b3d6472f9af.bin
Size

612KB
MD5

5aef009bfcbd6f5ea2c9c2aca921122e
SHA1

fa7ad8bc69837aee304268cf849e3eb61c69604c
SHA256

9fb7897025708a9856179575a84a50d07218a22086e0ea4a3f939d60813fc88c
SHA512

2e13d915a949aade60799ae99f7966c7447ffa67393263dafeb5c791f5451f12a1e2cf8574b52dfbd033013f0420d69687e43527729953de18f9c9adc20e3237
SSDEEP

12288:DsqIlURu5zcoczVN6VixcXxtlRPoHK94LciKzK5yeFgyFkylSNcNkIbzNrk7:DsqIlJ5ySixcXHl1mKmvZyeFgySNNcNE

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/CourierShipment.pdf.exe

cee3497a00f81f795eab4b3d6472f9af.bin
.zip

Password: infected
c5a0d7c96dcdc8a08af4c2284e35829b9f2e4de7c739c9ccb1866fb1728aabd4.7z
.7z

Password: infected
CourierShipment.pdf.exe
.exe windows:4 windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 719KB - Virtual size: 719KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 186KB - Virtual size: 186KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ