ddf93daae0f8f76c5e073387d706f715[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ddf93daae0f8f76c5e073387d706f715.bin
Size

525KB
MD5

86ccd7eff09a2172e7332314728eb4ef
SHA1

b75d027d8c36ee3aa57503a5eeeb5c9acf541801
SHA256

9e58a0b123010b04efd6fb44a68efdd4d64730e8a658eca4c0ee5e514349a075
SHA512

0618690ffb70d10df944944319e7c42a93d275841caf623f4a8d0a5e5ce78515825d5b5aa8455bc58d58a2c197492fb210ce2ebbb95cf2c5a0381cb6251dcb76
SSDEEP

12288:zLf5qfZ1ftIzhE/GHsC/mxFnmuVHPlQWDy/D++wEZecLduyUcH4F2:zLIfDf6zhKPmzyy/D+ktMyao

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/9ccc33795971e8a67d896af61952d507e72e1b4e2529fc54515c2a4d52391fb9.exe

Files

ddf93daae0f8f76c5e073387d706f715.bin
.zip

Password: infected
9ccc33795971e8a67d896af61952d507e72e1b4e2529fc54515c2a4d52391fb9.exe
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 705KB - Virtual size: 705KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ