90efc8ec71fa28bb7fd3d4232[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

90efc8ec71fa28bb7fd3d4232.bin
Size

8.1MB
MD5

d89d7b8004bb179f82aa5bf2cc71f15b
SHA1

442f7dd0b4d56f74b03ba17f5a633e1a6446c63e
SHA256

245bf202a20ad0497ca635b694016fa4759f98fbc351ce5df5e3fd721944cb6f
SHA512

30ec2668284e4f48c8e29eaa6a5e272ef1ce06c9a18322fd101ee1ace5da9bb3bab2186b3a72fb273f39812abfe499acdce72913ce5a607a8b28eea50c3be9ce
SSDEEP

196608:zI3lRjncoEnPDXa31Wdl/RF8jdl2iKSuWS/Re2CwR5:zIHxlWdxRmjdYivulJe2CwR5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/0c64b59284544f5b6999190a45541c39fb90eedb648a28825d02e06b939055ea.exe

Files

90efc8ec71fa28bb7fd3d4232.bin
.zip

Password: infected
0c64b59284544f5b6999190a45541c39fb90eedb648a28825d02e06b939055ea.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 8.2MB - Virtual size: 8.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 79KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ