6ab46717059743180b06d54e7ff8677f[.]bin

General

Target

6ab46717059743180b06d54e7ff8677f.bin
Size

272KB
MD5

62a3e1798879fa2081f1ee9c6fe84868
SHA1

5278c2287449fa20b37862dead6fc6fdbc9b5ea1
SHA256

ef1df0c751809a00e52dca0b6e403ad260bdd6e252dbacaa7138c5c8cdbaa120
SHA512

4c450e16fc766409fd70a69be0687f889028d12cf148107c3669e0a3397e85e3ccda086344c645e38bc5bf427688e5719cf42fc3e3c86eb13b5881d2601237c9
SSDEEP

6144:Onj6Uh+dCYqbsoZst6no5uzP3MhU8UYopac5KAmRhOUlo756:O+UhlAwsr0bMhroAc5vmvM6

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack003/Payment-Slip#RefNZ84092748498293.exe

6ab46717059743180b06d54e7ff8677f.bin
.zip

Password: infected
85dc2e86d45009cdf83347fbc29568cf6e76841801fc9170caad91f48eba62d0.xz
.xz

Password: infected
85dc2e86d45009cdf83347fbc29568cf6e76841801fc9170caad91f48eba62d0
.tar

Password: infected
Payment-Slip#RefNZ84092748498293.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 366KB - Virtual size: 366KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ