4a09fe44aa90b61b702808b1185ec90b[.]bin | Triage

Sharing

General

Target

4a09fe44aa90b61b702808b1185ec90b.bin
Size

103KB
MD5

8100c70aaf62891ea873e343290c9716
SHA1

beb4c52b74fff68452f95fb67e2f979522eae271
SHA256

1fb97afc12919b32641d065a9e0aa8ae1eca0cc318f0c1441a0a4bd07d564162
SHA512

6d8fcec10669fdd518cde45eae0c1703f9e193f1d5902f896b1bc6f69f335bbc76e0f418dcd1fc9426c0f16f799b2a173112ac2fe40d01b05baf348648f8d73b
SSDEEP

3072:gj/vEir5t9qE0O7WdaKpbCy4tz24BLsz7VvE:OnRjebC3tXBIfVc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/ad7c4b87ed91d36bcc3e4ffee33cc77cfca9a29bb9cf41637bc0c7be5525e0a7.exe

Files

4a09fe44aa90b61b702808b1185ec90b.bin
.zip

Password: infected
ad7c4b87ed91d36bcc3e4ffee33cc77cfca9a29bb9cf41637bc0c7be5525e0a7.exe
.exe windows x86

Password: infected

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

EGR0
Size: - Virtual size: 204KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

EgRoJ
Size: 103KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE