1ee5f98fbb806a712f1b604fc4c4c28a[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1ee5f98fbb806a712f1b604fc4c4c28a.bin
Size

11.7MB
MD5

a58229d3b4bc8c7f46f5cb15908f9564
SHA1

3f3339390c5b81c3cab8205597e5fadd9858d327
SHA256

d8d99963e4b991579b9b9101bf9617fac0566fe3b2b6da23ea62a8ceb46ca777
SHA512

2408b1e22b15bac82c0f4d60ce174f97434f958dd3943e9ee9451bff01ab93b247f0eda44e536f904fb489fbd04cd9c19f17ccf6841446d8af5ae0e2bd03a06e
SSDEEP

196608:ZRqgOMCTbnCtrqLMOumjijWtn8c+D5U0jGbiiabJV63Mr6WBqbYdqhfy8NzE1fIn:Hq8sYKKmjicM5U0jGbLabJV63a6BbIap

Score

1^/10

Malware Config

Signatures

Files

1ee5f98fbb806a712f1b604fc4c4c28a.bin
.zip

Password: infected
566fed7c0f5027414066594ef3580224795683be610d005d414ef1bdd6ae455d.bin
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 12.6MB - Virtual size: 12.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 193KB - Virtual size: 193KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ