790350d341ee9f96d316b83ffb9bf527[.]bin

General

Target

790350d341ee9f96d316b83ffb9bf527.bin
Size

609KB
MD5

50cf6b9cd5517171ce0add55ede220f8
SHA1

e63c7e4114546deea3513353c88cb69b9b318051
SHA256

d29918697daba5f77fc0edd9da0caf7d32b5e4d332e58c3cf36dcdec4ceb6bc6
SHA512

85dc6ecd8e8fc46978359e46cf98a1658f6d87b2bf046ccb591b659b5f232238d1eafdfcf03d8677d244a490db381b813222985ec90d7f28d48b024d381f9a4c
SSDEEP

12288:p/50UiOFzsfTf3mwm2iBD/L/M+UAfjc48nwEuKivGie:p/50yoT2wfiBX8AA48nwyiLe

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/FW URGENT RFQ-400098211.exe

790350d341ee9f96d316b83ffb9bf527.bin
.zip

Password: infected
99a82d21a3ac94bd7078675ea999a9205fd992e17162bdccd55cdfa4c3d3da93.arj
.rar

Password: infected
FW URGENT RFQ-400098211.exe
.exe windows:4 windows x64 arch:x64

Password: infected

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ