1cc4b5233db6920249554ab7710cff8b[.]bin

General

Target

1cc4b5233db6920249554ab7710cff8b.bin
Size

222KB
MD5

3f5bc0d562a603f6db13a4e6bc2255ff
SHA1

106c6a5b78aa709327ada9ec3197f79bff1b6dba
SHA256

14c05a8dce914f2e8e6dc5125f049a32b9377aa12eb8a82dae4434a7f840f28a
SHA512

fc8287c42890b4e057e91dcd42c43613b6b5062ce343306ac2785deb31b67ea32566dedfbf0a36fbc37fcaac1f217aeb5c420a69b4f7cfbb37b41b188652c8a6
SSDEEP

6144:QGL+ZHZ57zCXpWYzBR+P+Hdo+UQftMVNA7d2tWqE:TqP7zUWGR+4dTUvVEWZE

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/Zamówienie. CONSTAB PR 00701 LD_pdf .exe

1cc4b5233db6920249554ab7710cff8b.bin
.zip

Password: infected
a1a05e55679bdea56193bb0607f8abc850aa566dfc415947ad5d4d1943d1e19a.img
.iso

Password: infected
Zamówienie. CONSTAB PR 00701 LD_pdf .exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 255KB - Virtual size: 255KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 189KB - Virtual size: 188KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ