5a76e002804aa167debb597cef8db057[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5a76e002804aa167debb597cef8db057.bin
Size

525KB
MD5

adfc4e5ff3ecca8d37424de15aeca004
SHA1

44dd6af4856ae1386adce7979e563d6d20e7425d
SHA256

8fc6aecc2c6508c9a0cfc9518ceb01f1941b3e4ab6b5b978ba18d48ae9e2e2d5
SHA512

6705bd9ef966f6045007e432ff4e3d4ed1ec96a44530940a5b5f0423ae8d1c99a4ed2ecd258d17ae8708e0c0a978761b6ed08691725499b1e6a0ed0dbe4b2706
SSDEEP

12288:JNmw+d8MgW9h2QQe+fqIDsAtui6N57yL+uBB3XMkz1oFTgHcz:JNmwKPhQrT4AtuB+lXuL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/66a8168c1ec7007ecc6f417f26fb1127db51dc566830a05a84e235ff1549c180.exe

Files

5a76e002804aa167debb597cef8db057.bin
.zip

Password: infected
66a8168c1ec7007ecc6f417f26fb1127db51dc566830a05a84e235ff1549c180.exe
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 641KB - Virtual size: 641KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ