d16742f48ee37ef9ce39e26fc62745c2[.]bin

General

Target

d16742f48ee37ef9ce39e26fc62745c2.bin
Size

634KB
MD5

eec783ac71e3f497554cadccf7340d39
SHA1

2636b468a6e53d47e915bcf75c9cdc025f44c517
SHA256

8fe7ff80dcdcd394e87b034b2772611d87581eb5520554e8c8df565342a20c01
SHA512

7442e3ed2aefb1d5a46c6fcae22ca4899d304fc87fc129d7f6b8bb8887ff4686753f9af48772d53bd38f985c020c3c8d7fc87992cc04a1f2b0a8ebb636cdd652
SSDEEP

12288:Au7eNH0dCYIu1UNnDXVxtDud3CpR1c4jBaFcpJbk7Zh:vy10dCYIu14DrtqdeR0F4MZh

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/PIG860624BF1GE1532xml/PIG860624BF1GE1532.xml.exe

d16742f48ee37ef9ce39e26fc62745c2.bin
.zip

Password: infected
3e634035c0e59b95f421a4df607979b5fe1453d472eb9465b246eb1d57567070.zip
.zip

Password: infected
PIG860624BF1GE1532xml/PIG860624BF1GE1532.xml.exe
.exe windows:4 windows x64 arch:x64

Password: infected

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 50KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ