a6960aa33a466e0a7bcef7fc916217ba[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a6960aa33a466e0a7bcef7fc916217ba.bin
Size

863KB
MD5

3497f6b37cb922d166c23f7a07c4c5bb
SHA1

ccc01f22674a429e650157336c4ff08cfc5dd519
SHA256

4de4c7ad63565d66ddc5bbefe3518cc8653008712feb4ffcddc267ca6bb9d22a
SHA512

609a8a9a876ad139d496fc29c9ce054275cf54a48b2917396be6872ceaeb5ab6bd9e0f551c59254fb99c766702156700b6acf2f9b3c7460a9b9440e76163fc78
SSDEEP

12288:6YsTw4L0Z0+g9Z783MQKFxH6uvU2MpC/3760drEEgetfXCNibvYXFdXguRyuXSQ2:6YBuxF4MFFxH/Zv7DEEtsGvudJfWzUO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/17dd159d10d3a8577439e36480e9f6c90de7e964eea801181f8caba8a2f98b5a.exe

Files

a6960aa33a466e0a7bcef7fc916217ba.bin
.zip

Password: infected
17dd159d10d3a8577439e36480e9f6c90de7e964eea801181f8caba8a2f98b5a.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1008KB - Virtual size: 1008KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ