e8484db9e64e947b261a107e9243e328[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e8484db9e64e947b261a107e9243e328.bin
Size

5KB
MD5

4375639441287efb9edaefe63c061866
SHA1

69fbc7b24afbfd77eccbc5f192229a508d339884
SHA256

64899e84703a2e4efb47813ba223c45d27669328804190678ffa5e8f0908424c
SHA512

ed1efa9c3d1455b28b76960953536b2b27a407ae4d567e74c0b0950ef4c21ba3611fe3fbf8fec6e49ebcbf5acd13afe2ce4d1f7b01c53292cff8527a97888dbe
SSDEEP

96:P2EL7mxYScZFY4OZFlP5DnLKrGVM5loRiYvjVAI30fYDtSgvbCyb+Ie/+r8Gyt:x/Zm4OxP57MDoRF53GYDtRLb+IqC83

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/4cc2a7bf2672b3327d36308f08734646a395e6fd8b42b94dbfee04f8a3c4aa16.exe

Files

e8484db9e64e947b261a107e9243e328.bin
.zip

Password: infected
4cc2a7bf2672b3327d36308f08734646a395e6fd8b42b94dbfee04f8a3c4aa16.exe
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ