b134f378d92e6338d0fd3da28e7eea80[.]bin[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b134f378d92e6338d0fd3da28e7eea80.bin.bin
Size

505KB
MD5

8d1e9e8c18db5f5a009e7d673df73c01
SHA1

f3429ca02bf5927bb9c57c79f9d47c57899e6f84
SHA256

f0665fb2f3fac9c340e7ea4361c393a4da2c2cc2444928d8d359bdf4ec0a8b3b
SHA512

b0795881339bbee42bfd7c5d66fd572eaeb7ce10a34534706cfee2776e4d24856ab55057f5d4834c0a3657683686f0bf5a65c18e169357b8d1b99baf132ffa60
SSDEEP

12288:48sJuIRZgwND01IdjOgf3zaetwWXpS18bssj6+a+wp8Wraec:4NZxD01Idj3HtwWXpS18n48Rec

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/30a821884a0ebea379cb9130bf94168aa04e115baa74b63bec5aee4d8dbfc62f.exe

Files

b134f378d92e6338d0fd3da28e7eea80.bin.bin
.zip

Password: infected
30a821884a0ebea379cb9130bf94168aa04e115baa74b63bec5aee4d8dbfc62f.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 596KB - Virtual size: 595KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ