2890e8c5716be6b434dd42f71868daa2[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2890e8c5716be6b434dd42f71868daa2.bin
Size

619KB
MD5

311e452969b71c67babd6d59d21c6ed8
SHA1

1da871ad33a9b5a1a7277e0db39fa177e43081c7
SHA256

bda555815977a97d9769a713c20d7e66263937dc8f4c6306fd68319f85fb84c1
SHA512

5283df43043adf2f63ed10ad8db353ed6030e9019d1761d00623e53da7b21e4e59148d41071db2b9fa68e60f16b0f199a0808327e750cd46c7c0fafbcef83e03
SSDEEP

12288:sZLiFzwiHCTcIAgjAFbpp712r1JbO2K0ecoOCjyxwR:sg6TvObD71OJ62KjNL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/34ecca4a7e5a01eb8382e6695c9478b1906e1874d3922aad852c32716fa05902.exe

Files

2890e8c5716be6b434dd42f71868daa2.bin
.zip

Password: infected
34ecca4a7e5a01eb8382e6695c9478b1906e1874d3922aad852c32716fa05902.exe
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 690KB - Virtual size: 689KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ