4120bf826ec0e18ebc746e256c8b07098af2852ef88687615e6ebcaeb767a074

General

Target

4120bf826ec0e18ebc746e256c8b07098af2852ef88687615e6ebcaeb767a074
Size

674KB
MD5

c196de9ebcd02296afd7a3d12409d17f
SHA1

f1b49dee5ca9b3aa34ade5cca11a131f0b6fb63b
SHA256

4120bf826ec0e18ebc746e256c8b07098af2852ef88687615e6ebcaeb767a074
SHA512

f027a9ac8b898f3c7bc1ccbed9c50b4f6ef7cfd61d92d3fcd1e30f658bae600956e3a0422e30500c20d41c86aa1b9354fb2a513d5057304342298002832e5dfe
SSDEEP

12288:Q2YbQpSikT2LMGUxEG+9Y9bop6U8yMLspyMm1gs8FVc:Q2Pp6YM5+9Y90Qyxfmys4Vc

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/New Order062421.bin

4120bf826ec0e18ebc746e256c8b07098af2852ef88687615e6ebcaeb767a074
.zip

Password: infected
New Order062421.bin
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 753KB - Virtual size: 753KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ