9279aec14e5b8d0e456476b4a3fe2f69[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9279aec14e5b8d0e456476b4a3fe2f69.bin
Size

630KB
MD5

c209f8f17bf5100cdb64eaf502b292d9
SHA1

734c2ed3ad4daf70cd0003a8665f8a9f17ed808b
SHA256

46e18210fd346ade00a73300337f8c4bea728afc8dfd4e6250f3975a8085c51f
SHA512

fa052a203a8b6174a82257ff7f7732eba31c778ffc69303ff1bee67d109c0c6083210905b325c2eaa48349ca94f2edc5e9d4eedb8a120ca05c5d7ef2f510792a
SSDEEP

12288:IQU4T03mI5eTlI495mTTLtvVKK5uFotwAlAKWfz9krfEEAhJY98DnbiNXUIlvzkO:I146jsJH4TTVVWFotwAlpWxkrfn/8eEA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/612f1a7e7ced6e8e9a9d9eff56da53c08c27c911068fc34d323fb4f05b895f91.exe

Files

9279aec14e5b8d0e456476b4a3fe2f69.bin
.zip

Password: infected
612f1a7e7ced6e8e9a9d9eff56da53c08c27c911068fc34d323fb4f05b895f91.exe
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 688KB - Virtual size: 688KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ