XBinderOutput[.]exe | Triage

Sharing

General

Target

XBinderOutput.exe
Size

10.6MB
MD5

d877c0cbea92f5f2ed48793db8b30597
SHA1

3e971944a5d7bedfabffab03df9148e96c6a7ee8
SHA256

ed3a9a451a197ca4c22b82baade0def699b2204550ec6d06abac441cb4c42e9d
SHA512

6f1dfc1168be706307289a656909cc14f7d6c90636bdc52ade21962581182c8e7925bd1bf8af531c7ae6cec736af2970efa3fd699d31bc0216bd1b77af7f1e34
SSDEEP

196608:yIMn+apPA83Qk3S0zbYqKUNjL5YHj9jMsqpjP5OVn6Ms9KQ1iTVrgte8kzVY9FSP:fMn+aNGsp/5YHjasYQVn6JMQE5IkzVao

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
XBinderOutput.exe

Files

XBinderOutput.exe
.exe windows:4 windows x86 arch:x86

Password: 222

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 10.5MB - Virtual size: 10.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 137KB - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ