61eafa6b150d73e3975136b8c81c505e[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

61eafa6b150d73e3975136b8c81c505e.bin
Size

634KB
MD5

d06b63d0bce85a0c51ecc76a7201e10f
SHA1

37e217c3c1c81ed982a44c4548f23c54a1057937
SHA256

4856f1921c09702dd63d4e1a5adb74d25133f69dca3a7326185acf9033cc759a
SHA512

e68b961a164ba4e4606898bd6bfeb945f25812217add9d35dc2d7adf21e1bf64fa8d906e3d8a3159e570a8b7cf9aba105e1a983687461fc41b7a80ecc0d0138b
SSDEEP

12288:a7oH2CXYVS69J3/aYbWsTRF7FNrjLafFABx8LTBRmt23mSiid84nRXBl65ZVmMig:aMNYk23/aHcF7F5CfeB+LTBR6P/iX04y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/00446b78e85b721ff8ab19643f451074ed52d3ceb924f059f1b1c778af8fc42f.exe

Files

61eafa6b150d73e3975136b8c81c505e.bin
.zip

Password: infected
00446b78e85b721ff8ab19643f451074ed52d3ceb924f059f1b1c778af8fc42f.exe
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 881KB - Virtual size: 881KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ