b4b79284b69b5affcbe31d459ea92ca0[.]bin

General

Target

b4b79284b69b5affcbe31d459ea92ca0.bin
Size

645KB
MD5

24f69e6f7fa7589251c3f083938e54c8
SHA1

b14017bd8a459608f89048a32c043ae4f807a883
SHA256

50e60bea99b90e60b76709f72cdb5e0176e16cb4371796503b50ed75ca4f0cdc
SHA512

dcc86c3d36893f06420b58ff09187a368ca142b3e45da19a0c2ae28c650f4ea587b5beb5e07176f51b36fd7f81c5398e430a899c980bddab02de77cbc9393b68
SSDEEP

12288:rFM4l2TikoxTtmLDKh2zla9bWP7JAxSa3TruyZkhloMQSLdydnr3UI:rya2Tikq4LyMP1u3uyZ/idUgI

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/9856_7.exe

b4b79284b69b5affcbe31d459ea92ca0.bin
.zip

Password: infected
6cf918475ae4aca1a6b0e8a9209d2f5cbf9c45bda9632946bd3f021cb66e3506.z
.rar

Password: infected
9856_7.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

djdH.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 692KB - Virtual size: 692KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ