407a4475933399d86b822c4ed5a6393b[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

407a4475933399d86b822c4ed5a6393b.bin
Size

558KB
MD5

359f6015f5e03afaa20f575e3cc58107
SHA1

be66af72af6ed14dffb09b8e5eaae64a8d52b99f
SHA256

a3699f4941590117a050fc13eeff5fe4bcb6826e17e8e8b65e7c19063cf4f6a1
SHA512

09332c85cbea78ae76eca767e56510cc2c388d88cefd3bf288d54b3be776495c7ba47a28b4cf01bd0725216819df2ee97ae7b3b2bc5f63d7ddcc1752cd0471f4
SSDEEP

12288:0aeWuZrYpCspcJR9l5B4ZFpFHQYzCfI0Wl+Jrb9N27E9:0aeWahsp2R9l5uZFp5FR0a+Jr7yE9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/21da6251b60bdd9a0fcc9c1728d7f63885afeb53185ccef2a96103f3dad144d4.exe

Files

407a4475933399d86b822c4ed5a6393b.bin
.zip

Password: infected
21da6251b60bdd9a0fcc9c1728d7f63885afeb53185ccef2a96103f3dad144d4.exe
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 631KB - Virtual size: 630KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ