befe86e445eba5dcc6a5ffc3c579fe1e[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

befe86e445eba5dcc6a5ffc3c579fe1e.bin
Size

576KB
MD5

8d58bbce32ff8c055af911e36dcbd037
SHA1

ce85b8dca2048c98e95ecb0fffaf036ba1b12e67
SHA256

dfe68c8b9107cf725cfd790f4f8579e9115131b05d70dace1a63c36036b6f860
SHA512

abd51be0f3456f9fa06f5de5ce8b7c65e9895c99cdd832b465667564c6b8c936f604888ecc44e8bd65ff63388b19046e0bf6972f34b6bd156dad3aa957507fb0
SSDEEP

12288:UJl7uZhHKwz4AkovXlJ1PR4aeSJFDLYaBe9CKUrYs79m:WurHKm4AkovVJfeMCa1rYs79m

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/d1f88ae528bf7f14d38e798f0f8b4b2803ab815217625130df8343461dee9894.exe

Files

befe86e445eba5dcc6a5ffc3c579fe1e.bin
.zip

Password: infected
d1f88ae528bf7f14d38e798f0f8b4b2803ab815217625130df8343461dee9894.exe
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 620KB - Virtual size: 619KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ