6d5dbeab70e799b93d25317dd868435e[.]bin

General

Target

6d5dbeab70e799b93d25317dd868435e.bin
Size

693KB
MD5

884d729117b93008f3b4fe5c2a699eaf
SHA1

2e9873c58ef2460688029a20edb8c515d5533a2c
SHA256

34106f5040181fdb2e0f907998fdd9fd21cd5cd64053a38fd9e47ca12671b508
SHA512

54481c5dfa1145d0414de936b9a4cef05a8fc9f0831310e6ec7bcf6c96cd3500d0cc7fde283157ce0c7e59884ca195822038d66991bd4d940fc754376db22d3f
SSDEEP

12288:gevnHvB9VKXpzbN8QfjK/EmmiWnwhkD76rxCCV/5ISSf0tv62C2Ewd0ZH:3JzK5zbLlmmiWna96SSf0h78H

Score

3^/10

Unsigned PE 1 IoCs
Checks for missing Authenticode signature.

Processes:

resource

unpack002/Docs.exe

resource
unpack002/Docs.exe

6d5dbeab70e799b93d25317dd868435e.bin
.zip

Password: infected
5fb81184151a7a59ce4f0a626aead2fbfd75ec8d0de69341c7e57d4c98e07507.zip
.zip

Password: infected
Docs.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 732KB - Virtual size: 728KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ