f2648af8d69cfc583a4dc722217bb99e[.]bin

General

Target

f2648af8d69cfc583a4dc722217bb99e.bin
Size

633KB
MD5

4f4e653f30eb019fead100a834cb67ed
SHA1

5ffdf080b5f94e8e432603396a66da8c13bdba1d
SHA256

3984cec1e7c0078dc06cc696aa4919c7e22d4ee7355cd9e6eae44bed747180c5
SHA512

15f9f9e5825b399ce7fc4b5efe6c8d370a992aacf7739e47cd3a770148f724c37de38bcdd6453d7820073469e77fbbd8e45bda99c600a33f4238e2f048d46eaa
SSDEEP

12288:mYWTnbaXbG/ZOobdC82iVbS1VNtffRG6P9D5EtaqZv:mY8aK1C82njffRhP9k/v

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/BOQ of 21M CRANE BOAT.exe

f2648af8d69cfc583a4dc722217bb99e.bin
.zip

Password: infected
3d6540dbfdacad01aeeeee8dac4f7d61e5ea0dd74c19ec8c74585b260009f2a0.rar
.rar

Password: infected
BOQ of 21M CRANE BOAT.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 682KB - Virtual size: 681KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ