28159b2b441949edb1434978031f397e[.]bin

General

Target

28159b2b441949edb1434978031f397e.bin
Size

657KB
MD5

a8e4ebb0140e181670f5c2d05e83f6aa
SHA1

6f64ecdd70a0f9abd21a984a53f839310afa4095
SHA256

09360ee99fe3c1659dcfa940fe0a5c6f3ec694ec94d96eb3f717595a103ed09d
SHA512

a394f07fd60da364c9da44c0e82994e776eb6ef31183102cb4336b48f0a91e35f6072456a46eb95cb36653eefe77fe736896416402a2ea3e32518ee2769e160c
SSDEEP

12288:8XZ0tiw+XBDqYgNO2zyQEUnh4ZB3LoZvIoSSFzzq5uUXUMX+UAT+Ny:8XZWJ+XBv3QEUh4HLuvIoS8oPj+CNy

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/Families details request.exe

28159b2b441949edb1434978031f397e.bin
.zip

Password: infected
78496f72528a3e25ab543f4cf13440b96ed65e08608f059af2c8958319261657.rar
.rar

Password: infected
Families details request.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 815KB - Virtual size: 814KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 93KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ