f5dd3f82473536afd0cb1458f928d9cc[.]bin

General

Target

f5dd3f82473536afd0cb1458f928d9cc.bin
Size

692KB
MD5

da96b004f73d0c35f1dbcb1ab0a8db53
SHA1

012a57c6ad2d41ec5fbe0e1367114fcc67042fc6
SHA256

c3b16c4c69f3ed3516c2118b5882d3e2c11cb543e240a4810efa4976096721e0
SHA512

05fa46da9fe69bb8fc29150126f85bba738f10dbb3cbc7462a100fcdbdad526c94a638379dce81ef8949cdce11a163074ce74b783c51074a8138d37ef02b23d1
SSDEEP

12288:O10zhDegk/eUOJ3cDeGfgOVLxABmjxNy46VBFSHhNbZFqRW2syjUmMNfTzVP:LDeg17cDNLxdL6feNcYzB

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/PURCHASE ORDER-6333-2024.exe

f5dd3f82473536afd0cb1458f928d9cc.bin
.zip

Password: infected
263a3a8f8f369928a6e0c96b7ad4bc589060a417032c1a0dfbf3bd7a5d4c6489.rar
.rar

Password: infected
PURCHASE ORDER-6333-2024.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 794KB - Virtual size: 794KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ