b97034ee9c19f446a445db253dc70134[.]bin[.]bin | Triage

Sharing

General

Target

b97034ee9c19f446a445db253dc70134.bin.bin
Size

514KB
MD5

3947f430dbea89593fc3dbd8ea21645e
SHA1

d0f9bdf82b93f7e456fb91c44ff35d928a8858f6
SHA256

e315fa4ed12b9b0f07f7bbd5096a9e31f39ae175fed2981e7bd1eaac28e96bad
SHA512

1b3a7b57ba466f589b2eb3c20d8d96e486be758c6e0fe8949e633b29def7da8de83705d2632fd5acad1e526b6b9a326bb39bbb37f7ad21bc79280cba745bc4e7
SSDEEP

12288:SKu1VjCHjpsxAUDLLYGBkatF8N1mISQ9WSRma/vZe:bu1pCH2v3NkDNklQ9W7Z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/55618071bd4c2f58f8144be8ae2ef40df68f07d7a6cfc5b0e2db1b7f6a57846d.exe

Files

b97034ee9c19f446a445db253dc70134.bin.bin
.zip

Password: infected
55618071bd4c2f58f8144be8ae2ef40df68f07d7a6cfc5b0e2db1b7f6a57846d.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 541KB - Virtual size: 541KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ