608a6d08b4a99e405b845e5cf70f4fe1[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

608a6d08b4a99e405b845e5cf70f4fe1.bin
Size

928KB
MD5

e7f07da47d4346ba08653f1f5148b15c
SHA1

e9c2e0b44594c2ada0526f627feb08bc0ae3ebce
SHA256

76053847e7861cb559a1f0f1cef802382eadd73cdb2009838959912c7ed7d2be
SHA512

ad9fc0a26af6db0c5790d3be3f8232793e0f06b413e55e15d9fb6edd0665eeda3d5fd81e32d792a33753255141e4fc751218264c9f4aa2ba94446e90df01a77d
SSDEEP

24576:sa1BiiMIu339pB734a0gr13M5409Icee3SIdpVL:hniJI63nB7VrZM5F9IcFXd/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/MV GOLDEN SCHULTE PARTS.exe

Files

608a6d08b4a99e405b845e5cf70f4fe1.bin
.zip

Password: infected
MV GOLDEN SCHULTE PARTS.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 539KB - Virtual size: 539KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
f58f989c542ac41b295bac70da60a73994421d1153b82f99c0a03189d057e292.zip
.zip