2d914aa8e3257baee5a6d7ffa629b446[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2d914aa8e3257baee5a6d7ffa629b446.bin
Size

628KB
MD5

0efeef6217988014514b735b640b2629
SHA1

0c378f63c411cdea9f2540b336d85cb073e3114c
SHA256

72bf182969cb08afa7361649528e10fc6710e26bacbbb50817989a2c8a47068d
SHA512

fdbbbaa3d11bb68c4792a7a1babe479ce8eb764f426527327a02bae82319e2b03a17ec158ea562d425705e998777660454fad2ef55a489e7e78e3a4b80de8186
SSDEEP

12288:ZkoeKqkmNdzhtSdBCFB5xj4XJdK0Fr9ujaolWK5ntF//pcpXsreb:Z1qnhvhj4XhFJujaf2XWcyb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/f2f7a27696bbccdc3c8c3e3f73dcb15c9045dbf76424e11b09146fd1b488dd9d.exe

Files

2d914aa8e3257baee5a6d7ffa629b446.bin
.zip

Password: infected
f2f7a27696bbccdc3c8c3e3f73dcb15c9045dbf76424e11b09146fd1b488dd9d.exe
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 810KB - Virtual size: 809KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ