294a47afa9c9fb2f2554b8632614f6e7[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

294a47afa9c9fb2f2554b8632614f6e7.bin
Size

621KB
MD5

82e9820dbe891a181eabb9071938eb99
SHA1

6033b89484601a532fcd43ec0de97adc7aa66c87
SHA256

cdb9801c8f0f8d464b1fa9a6c699a5206b22ec8a8d19a5d7bd8fa68c35c5c4b3
SHA512

f011ef61b9b030e82e2e02d6acf9f8f3c4752acb601e75785e7a388b1d85c0220affad0737f4b1ffc1d2124ac92d55eb6305ed81ff9a713e6a5316555cdeeaff
SSDEEP

12288:cz55kGbQ8BoiU5opyZ70ELQo4hJTrJ0K3ySwyLzofi7RH5+ZWTEg1vWN:cN5lbQ8yZ5oIZ7n6JTlSSwyvMi9H5LQN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/c533150826bd6cd5b29cc1ec1b552091e976f7ec10044796f947bc262023d9bf.exe

Files

294a47afa9c9fb2f2554b8632614f6e7.bin
.zip

Password: infected
c533150826bd6cd5b29cc1ec1b552091e976f7ec10044796f947bc262023d9bf.exe
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 675KB - Virtual size: 674KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ