e4cf36ea1a34e5b0a5274e1de4496a5e[.]bin | Triage

Sharing

General

Target

e4cf36ea1a34e5b0a5274e1de4496a5e.bin
Size

665KB
MD5

f78afa7a6b4c6c5733f70012b89746e8
SHA1

d2d85c642826ee3eea2113ab1cb21b3c103d7f76
SHA256

b6b310eb81c290227f3072901e2ac417953426253aade1f85b7cb7ed7df33ac5
SHA512

01533c92425f191a7c2e8da3ee5b64e0388a4028956df3124d26c8a8fcbdbbe7edea4815b7b6eca89d4f34a635a9fff9ab92a19167b6ab4ae97bbfc49c9fe330
SSDEEP

12288:WKkOW9gaEYdXjcQEv/5mnosCCrbVvqsz/FHjEJ/xM/iab:DkOW3E4TJEnMosVFvdFHAJ/xub

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/ea053b7a3fafe6e29c66d8bf5ae31e99751d4d4c3eb081a26d2c23ee8bff41d0.exe

Files

e4cf36ea1a34e5b0a5274e1de4496a5e.bin
.zip

Password: infected
ea053b7a3fafe6e29c66d8bf5ae31e99751d4d4c3eb081a26d2c23ee8bff41d0.exe
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 731KB - Virtual size: 730KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ