63efa34320ba0f7e98104f825a565acc[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

63efa34320ba0f7e98104f825a565acc.bin
Size

213KB
MD5

e94b1235fa4ea37b74cfbc86e2a4e12f
SHA1

c71c930da0e18c6aa0e182f9af2eb8c290b6a8b8
SHA256

0ab42fcd38c1d60e1e96d12461112875abc59bf150b47e90997f825af770c18b
SHA512

666ce39ce0bb300718f8938183c51a682eb2ce4b6b0e7c21e2bf01d3b7c6b202ec32863d41c07efa0d65cae562d20077286e549a7960c54c56a8dbcb764ef2ef
SSDEEP

6144:+ugcLzg1PZYjN9+StMdSATWLS7Rb6+rqVc2Ma:PglSm2aWIm+rGcva

Score

1^/10

Malware Config

Signatures

Files

63efa34320ba0f7e98104f825a565acc.bin
.zip

Password: infected
dd277dde3049bb20e367796ae4cf93dd4e3e119104e72318ffc84f148f7e7a30.exe
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 526KB - Virtual size: 525KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ