b26d82412e98b0ba5493bba71c97e871[.]bin

General

Target

b26d82412e98b0ba5493bba71c97e871.bin
Size

659KB
MD5

b8772171e23ddb42c16c2a56d95ef28f
SHA1

93ae93e8a50aadba381aed29013a5701d8b2c29f
SHA256

f2f68c5d8860778eedab426c5d6e7d552bde9f3c6cd4b6b0acf9a98ba40401a3
SHA512

2f443d9c7af9e05619547f2e9913424f3a2d370f8d478127f1d07261e2f3bd301dde61ed380fe06c0e20046efb254674dab3faad3ac1e286370072e3e60c8f0a
SSDEEP

12288:madzqlf/zDE4E+n0FR0plOHsVr4epW3lOTZpLkH644qntw14lyXrb4Gax:mK+fE4E30HVMe4MTrcf42SKPx

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/INV and PAK.exe

b26d82412e98b0ba5493bba71c97e871.bin
.zip

Password: infected
f213a569cf0a8b823f8116f03f2e49ec48a0ffc2bd7bb202b638517fa8eb975b.zip
.zip

Password: infected
INV and PAK.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 881KB - Virtual size: 881KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ