8299e9abedefeb9c6d734d1ba89f4c7a[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8299e9abedefeb9c6d734d1ba89f4c7a.bin
Size

629KB
MD5

97428ebb657a142b8e54e9a2a097600b
SHA1

9a32e6de274eb50670f865a527aa54ef2e8c42c1
SHA256

31729bd34872190ef4788a85fe5b69a57755a298c6ac80fbb43585e7dfc5f29c
SHA512

de68319a9b0254737818f8b9778384a64f508470c8efe36cbfeeae42506d5eb09cf4e4841ab2ff6098cddf74db72a4c0dd4cf83fa3c1444f1fb4c8f359a9d0f1
SSDEEP

12288:DIP/0+rP4kxiW93X/HdYnBc21VL1zJVSrPXvvNAhn4RruKYHds:D/+cSn/HaBc4x1zypA5iqKY9s

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/f79fdb2d3286ece6c575411cf49f56dac3695a8068634a37d497f9d19ccb1bdb.exe

Files

8299e9abedefeb9c6d734d1ba89f4c7a.bin
.zip

Password: infected
f79fdb2d3286ece6c575411cf49f56dac3695a8068634a37d497f9d19ccb1bdb.exe
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 731KB - Virtual size: 730KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ