EBYS S_LME (Direk silme)[.]exe[.]bin[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

EBYS S_LME (Direk silme).exe.bin.zip
Size

14KB
MD5

28b6a0c53316ffc3d08a5fbb7ceca5f9
SHA1

9fdc7e32d69c29f01d6050cc762f11af71d92888
SHA256

a9428e93d87eaa75e43043edb5ee01a3fa3eef9b2b7218eab8cabf0e1090c281
SHA512

68771e40744a81381ac6874bc3f092451595d1357bdf677fed82b9bb6e66fdc336cf9bae83371dbe341cdb81871db0dbe4d85e341725b1320213c3893380ea8f
SSDEEP

192:y+6tHyv6n41TKoJUp/NmU90BGz8+Lun97wVXyCJORO4kwGCeyAfvFUi:YkdTGL5zbLu+VZ74kwGCeyi2i

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/EBYS S_LME (Direk silme).exe.bin

Files

EBYS S_LME (Direk silme).exe.bin.zip
.zip

Password: infected
EBYS S_LME (Direk silme).exe.bin
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\Demet\source\repos\Ebys_Silme\Ebys_Silme\obj\Debug\Ebys_Silme.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ