c4b11d8dcbbe220cb99f340999467d8a[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c4b11d8dcbbe220cb99f340999467d8a.bin
Size

800KB
MD5

4f297e92e228ba07dc0b11cbab186634
SHA1

177dc517a9a3ec39925241233ee772f877aa4c3c
SHA256

14346f6c92db7d5be3ea4ef03028c729079ff4b1740da187a73bfb3de0d572b2
SHA512

c0e7ba8f2eae8f4ff715dd96ea302b68364f698a0fb29dfe77fb55c997165f3dfc9ce0ef3d1a135436eb0b1399f07a006ccde2c1ca8bb6373c33cff20bab40a5
SSDEEP

24576:pQBWCAExF4W1XeB85eLCD+8KLXbJOXKPSc7:pQBW1ExF4WwnLCD+8GJGKPSc7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/d017c9cd55ed118f77ab63b7369dcdac66376a19736bcfd26a228bac6e350fa2.exe

Files

c4b11d8dcbbe220cb99f340999467d8a.bin
.zip

Password: infected
d017c9cd55ed118f77ab63b7369dcdac66376a19736bcfd26a228bac6e350fa2.exe
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 852KB - Virtual size: 852KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 196KB - Virtual size: 195KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ