4d4e1f532333c34574f5cffc1079ab9b[.]bin

General

Target

4d4e1f532333c34574f5cffc1079ab9b.bin
Size

48KB
MD5

a4ee246dd369190044120c267d556497
SHA1

c52e25c46cbd4d2cc68944611e851b1a92f1b8ba
SHA256

95f92ccff75800e1e5513fa2af7a36c88ba878c9cf080ab07b77d6ffdf9b1169
SHA512

32da241c97480b336f3b1f553b802a75cf091a771ef279928c9fce0c3bee1b58a2fb149eccbd04d83da83ac0002843bc0cc38e0fac18341f0019b04dd845ba46
SSDEEP

1536:7dcGJWEDQGS/A7m92nq7Nfza4P2Ut3jDbK:BIEPWwm97bOUFbK

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/Dhl.exe

4d4e1f532333c34574f5cffc1079ab9b.bin
.zip

Password: infected
8e3b61a64a6e802cdf9f926deaf040a808ebe5222e0a7a06f578e2376c42104f.img
.iso

Password: infected
Dhl.exe
.exe windows:4 windows x64 arch:x64

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 212KB - Virtual size: 211KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ