5757258700bfab91b68b3966fa93ccc1[.]bin

General

Target

5757258700bfab91b68b3966fa93ccc1.bin
Size

1.2MB
MD5

04d0c203f6a657913c968a322809e882
SHA1

759df839c88ed5c073b79adbca63650750ece003
SHA256

74416ac2d900f8577c0a1a4edc736a7ccc36515eb163bf4564d13c97b4f77f0a
SHA512

1ec9f3c670e9bfcb939004b9cfbb4de4237cebd2fa0c9e51c838ab89051a043e1d7554ac19743d011531407a6512b61e4833a897b286aba26daa5f2184eb7ee4
SSDEEP

24576:Yy4EZ227ZvJ2zaCkWuqCO3aLfF6gwkcrKcSS/09xOeHw5k2+IL9W:Yy4g227ZvJ2zaCk/oewgT6KcS3Xnwc

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/QUOTATION_DECQTRA071244PDF.scr

5757258700bfab91b68b3966fa93ccc1.bin
.zip

Password: infected
43630c4b08bd18f7d7eb19d2af74c6d2be25a319587999c1ebe20494ad9adf03.z
.lzh

Password: infected
QUOTATION_DECQTRA071244PDF.scr
.exe windows:4 windows x64 arch:x64

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 327KB - Virtual size: 326KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ