e68d25ddad71d3973895dfef9df5cd99[.]bin

General

Target

e68d25ddad71d3973895dfef9df5cd99.bin
Size

676KB
MD5

c4099434cc460d36324e52bac0a847b7
SHA1

8363af4617addb61964355935be5fc0ae187f092
SHA256

ab15d365950e6734504efeec0a80d661cdc3b91926debf80d84a1866b568dae7
SHA512

91d1f8c3d0090cb790b8723bfde23b8cc5e7b95d7b26a6f3e79a67aa54a6d42fcbaad7fb15b2dcabfa4819d75e31ee0c1125eda22640092003f0566fb8261513
SSDEEP

12288:zluRyLdld6QLALcqE7qJbOvDwDsur0JzYRrzUcf4xR4oOFyal1M+i02R:zluRypOQKcrsblLQykcfHXMf02R

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/REQUEST FOR QUOTATION FOR MSR # 9969.exe

e68d25ddad71d3973895dfef9df5cd99.bin
.zip

Password: infected
a559901b26c91619581c40ecc13a2126732258f2caf4eb9a2b2b588b12ed65cb.rar
.rar

Password: infected
REQUEST FOR QUOTATION FOR MSR # 9969.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

HyRL.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 713KB - Virtual size: 713KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ