c4b69a9063b3a2a3b6de44aedc1f15e6[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c4b69a9063b3a2a3b6de44aedc1f15e6.bin
Size

535KB
MD5

528612da4e3c468595cf3b051b304d11
SHA1

76e308a3a1b4459042e9ee274f1e9e5d2b4e9d54
SHA256

ccbd65ef9ae2e1907b86675deef25716822ff0b38c38ec9b85b94f292b0f6689
SHA512

a469f56272107ba56c396ef51080b91fd1a8c1e99891bf9388b134f2f138ae5fd353f431538fd568d197b78c62c95ec3e8d58d391254e3ae60b1445965d81718
SSDEEP

12288:kSn5XcIV8bqRHhoelv55uSv2WGUVksF/ROVGWJE0G+yYN:kSn5XnV8u3dR51qUVd/mGWJE0r

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/c8ac7d2990075472282d47371300b5fecee7716495aa9d539e39faae5c2b8625.exe

Files

c4b69a9063b3a2a3b6de44aedc1f15e6.bin
.zip

Password: infected
c8ac7d2990075472282d47371300b5fecee7716495aa9d539e39faae5c2b8625.exe
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 666KB - Virtual size: 666KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ