278971a2fbcb84316adb4a5eb73424cd[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

278971a2fbcb84316adb4a5eb73424cd.bin
Size

558KB
MD5

4c214add47b828065cd03d500860e173
SHA1

d664afba35f1b07d035407873808cace8d2eae55
SHA256

b7b1c0b79a06ac01d5c8d7a659a8cca6bf9a9163469caa15b6f3af3247effba6
SHA512

6fbf0b390a3d418ba6bd6803715e4119653027c40f54790e38c800d5794c8af1d2fe731217b138466a459c713419ddf0bc3958d4bbf52c1b1805e4795df77f06
SSDEEP

12288:/8mOlnj66RS30E1YDZ6GJN0f3k0R9SISjrpJiJ8+E8EWjG:/8mO9e4SzIlo/kAaeJRNEaG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/92a02cabe14060c80ea49990e59dd745476c0b5961cd08a07e384db9241fb003.exe

Files

278971a2fbcb84316adb4a5eb73424cd.bin
.zip

Password: infected
92a02cabe14060c80ea49990e59dd745476c0b5961cd08a07e384db9241fb003.exe
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 805KB - Virtual size: 805KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ