cb1b6fb8adfd37bec6e99a78ab7b7aef[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cb1b6fb8adfd37bec6e99a78ab7b7aef.bin
Size

596KB
MD5

083785e43b9ec8b4984f584be700c51e
SHA1

89850d0715ae41518b23b521f6c59ab6e6eb466f
SHA256

41fea4821a3741607c1ea5199f94973470606548cacd11c4ae220e6aa6876646
SHA512

708b16286c7aa212ff7a52b5f2ad9d434dd2980943dedd25a8fa912f6182454e7cf469a59a38fdacf3a15d166ae63cec5a17a4569efdded04196ef2ee32b9fe6
SSDEEP

12288:92V89nG/kJEmgeujtCtT61E85AkvlenKiP2k/JAqebkvSI:92VUnG/tmnOktT61Ewden3fIbkP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/e1b7acfbe15a0fde89a1bb1f0f51142061b2ff50bc6c33c770a40f1c43b0d7f6.exe

Files

cb1b6fb8adfd37bec6e99a78ab7b7aef.bin
.zip

Password: infected
e1b7acfbe15a0fde89a1bb1f0f51142061b2ff50bc6c33c770a40f1c43b0d7f6.exe
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 699KB - Virtual size: 699KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ