XBinderOutput[.]exe | Triage

Sharing

General

Target

XBinderOutput.exe
Size

3.1MB
MD5

e18e846d4bdb6ef41cf0f0a27aa9f512
SHA1

72b3cb545c09e18f0398dd0ab5ff97ce11cb6444
SHA256

48d4f67b8b47513692ff94bd7716e8ca086752d5944af72e9404156ed8e31a53
SHA512

c6e67e0f58666883f388c247fde1680028756ad0c6dc7421b45d3d3b9623abeb10c982999a8271e9b76b851fac70797c98a999bc22507d831108c2343b877633
SSDEEP

98304:Xsee+YP9EONeQXCmKUgjVVO6BEr+49yOwboZZh:8eeBP9EOvtKUFM98Z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
XBinderOutput.exe

Files

XBinderOutput.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 2.9MB - Virtual size: 2.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 170KB - Virtual size: 170KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ