1dc6a4dd8ac552c5bb6aa2f12d83926b[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1dc6a4dd8ac552c5bb6aa2f12d83926b.bin
Size

852KB
MD5

153308002473e5b2effd22954587c3c1
SHA1

e278a2e3a61517821eb30f558912a1404cc4cee8
SHA256

ae94e9fc96dc5a4d7f53cd487c0fefd41cbb8d93bf4d29ed105fac83bd68e41c
SHA512

09e1a52c099c34c9cbf6679666484c50047221f4c70347c1e1ff1f734b936d7340c7681ff1dedc64fe5905c6aae4d8a802e4097e7ce1ad111efa81b98da50e6e
SSDEEP

12288:bfrOZa2aQ4McDFhMG7j77fmV1JY61HRU3LcXgYP4GakijyH2AHSjg5VLbcShF:bjO4274pFhMcj+VB1H8MgYPoJWzPZX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/295757477a07e2f8c97054d3293539518781c52206b5deb274f955082d8e7d87.exe

Files

1dc6a4dd8ac552c5bb6aa2f12d83926b.bin
.zip

Password: infected
295757477a07e2f8c97054d3293539518781c52206b5deb274f955082d8e7d87.exe
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 905KB - Virtual size: 904KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ