1ea4e4d2945fbd1e058fa3ee0d621f26[.]bin

General

Target

1ea4e4d2945fbd1e058fa3ee0d621f26.bin
Size

707KB
MD5

720cd3f7e63f6e4cccbd56e5d81b7cf6
SHA1

ee1239d32e4ee302f88df0c18155fbce23c51ff9
SHA256

2809ba0dae4086a2c3222f6761a3e71ccd97bf6604b5686dab11721751de2326
SHA512

19d5b395f4ade33d47b1596172ec40088e313f52a9ea6199da2ba641c1e17df04424e47478e67569dfdda8b22c5f060deb7e67637855aa37602e43688515841a
SSDEEP

12288:b1ipxo5+elF2Ir3NRmJcZsXSOURlkgycTeP510uZJ+CEy8aVAULz2SF+mBdJ9ygI:b1iXk4+5RJyyePP0ubf8aVrZoS9ygfZO

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/Item list.exe

1ea4e4d2945fbd1e058fa3ee0d621f26.bin
.zip

Password: infected
912daa2b2f94bd255a5488cfee0a2731aa57da74178277014cb77f4fbaf80466.z
.rar

Password: infected
Item list.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

ihqk.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 732KB - Virtual size: 731KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ