aa058eb119a4173cc235beadd3355951[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

aa058eb119a4173cc235beadd3355951.bin
Size

632KB
MD5

8bf7179826c7680346a8039ed2b4e05a
SHA1

4a74f246e589f17c292bacc03bdb157d82c793a0
SHA256

168d79b20c7a1805fea55ed05fe1973dc283e6f029758382402ea80b9832a19c
SHA512

d026e5831bd5d90c00214de38ebedf9bbae2ba1c996fa9c3709fde9e7adf8c4b9dae16ebb3ecf13a65169062c888f6f2c984b19e9d365efe68f226e069f1603a
SSDEEP

12288:wvg7IQFyV9VPvMx4a29ZoFP6pj7Vef7RjusTK7Dbcp9tfbIbUZf8xC19cPwnJ1aW:wvg7I4elvjoFP6pjRYVjuWKvbcp0ljOt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/5c76a96da653327e6693cf7b0cd13af04dccdc8cab2692fdb707b293c197c2ee.exe

Files

aa058eb119a4173cc235beadd3355951.bin
.zip

Password: infected
5c76a96da653327e6693cf7b0cd13af04dccdc8cab2692fdb707b293c197c2ee.exe
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 734KB - Virtual size: 734KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ