4f063a5b00bc46c1fde799cf7b2e20aa[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4f063a5b00bc46c1fde799cf7b2e20aa.bin
Size

576KB
MD5

45c8b67c1008062032b22778dc682f7a
SHA1

b05ec698db47831577e511e88c3e6339c0d937f6
SHA256

a13d3b150f180da4826cafc8cc510b58a34030bdc706559beeb89ccc8f8b98a4
SHA512

7c9a8845fcee0f83441ca64ebbd5cfba8d18801c05e16ff2b709e2ab2d429280ebc4a58c3c3db85b57fb4e36702eef5c0ef26ba02c72cf8a3739da73234a3c26
SSDEEP

12288:JvAfxhgS9ombaHgdMLSRv5YXYDyOKTYTfeGkA9RmCQPeAzIPLGSh7lO:h8SdmOqD59wSDP7lO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/78b2c60dab71f835b8163d190c0befd4daf3ef2d574f2dd717a52feb82d497b2.exe

Files

4f063a5b00bc46c1fde799cf7b2e20aa.bin
.zip

Password: infected
78b2c60dab71f835b8163d190c0befd4daf3ef2d574f2dd717a52feb82d497b2.exe
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 971KB - Virtual size: 971KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ