28226d4a7aba82b48b2d6bb6a126ab6d[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

28226d4a7aba82b48b2d6bb6a126ab6d.bin
Size

526KB
MD5

b4536e0133a5a3486ee914b808c2dd8d
SHA1

2f84a91df8d8892f3775c1007dd9e6938a71d753
SHA256

ccd3c403484c88ea86a70d16f4ef0b31776e5d7dfd518572efaab5e5a0199ac7
SHA512

cbee5a40c9105cb28888dbb8e5926e6467b8e07ae6d1106c5ec22eccfdea8789531a2812cbe62838e40a2dbc39adf01ef8ae5609e9f59d38b354e63e7b154f70
SSDEEP

12288:CXogDA0gAELomONDH9FfJE/77yORpg3c6WXzu2/fgtzmRmvRpz:C4gDA0gAEkhfK/771pg3cljMzmSh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/110f8f032e4b93189e7ed0b50830994114487e118d63bb8386d71e43829e8b87.exe

Files

28226d4a7aba82b48b2d6bb6a126ab6d.bin
.zip

Password: infected
110f8f032e4b93189e7ed0b50830994114487e118d63bb8386d71e43829e8b87.exe
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 591KB - Virtual size: 590KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ