130bc3ca9ad2fd0aa5be6a53247b0f3a[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

130bc3ca9ad2fd0aa5be6a53247b0f3a.bin
Size

537KB
MD5

8e7c10a277bfff998bca9710f4b53d53
SHA1

c6379b6b061f1d4fc85bc6ece6f8d6ec2f077029
SHA256

601e564a58fb6bc794f2a5f6eeca6d504eef46a1bf984b8c08da7b7612935c3a
SHA512

01a264582196951f36b5f5c3a3fe6731265129561f5e4c8713e8d6b0d786d367f484b225f814bc419fb2eb341b838bbf05a2eace35d3b8c6c79106c775ce27f7
SSDEEP

12288:eakMyUYV4XKIpxp4CUZ8DxSCHHYJnGYgdS+T9ixunWhHwxoi5/fX:vzYV4XVxCL8DxS0S5gddnWhHwxRVP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/c64ca90a3608e3edaaf04f3289f58d018f2e6301409665820d92c61130784d23.exe

Files

130bc3ca9ad2fd0aa5be6a53247b0f3a.bin
.zip

Password: infected
c64ca90a3608e3edaaf04f3289f58d018f2e6301409665820d92c61130784d23.exe
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 720KB - Virtual size: 720KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ