a26867fdef5c31339cfaa4657e624419[.]bin

General

Target

a26867fdef5c31339cfaa4657e624419.bin
Size

646KB
MD5

bccb0e4434b7a88b3d7d5bbd4149ccc8
SHA1

7c617118460cbc6e70243f1d5f2b9c127462b1b6
SHA256

cf5db4606a62b77374d9597c384827f2d44ae8a74dbf7a3f60375000b894999b
SHA512

fccd21df7d5a2d883a165a73a3830f6b1a9df25890f77c8587632772b4642e0ab6d2d5ed98c29bc0eb353d24f10429b4d3e1fe434b1753dd443350b2fe171af7
SSDEEP

12288:3aHCPRnZhaDF+XZCKi0sFOP8NQADP40nzAfs8QPYGz+SkKs5+pL6qmcu:KiPRnoFcZRgFOPoQGoliY7SE8Lju

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/proforma invoice PDF.exe

a26867fdef5c31339cfaa4657e624419.bin
.zip

Password: infected
945e9df8bb5455e99b0403cdf23f8dde8b6242fef3f26f60d61c176149fc8dfc.rar
.rar

Password: infected
proforma invoice PDF.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 675KB - Virtual size: 674KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ