cc0e766057e1d8d32290ca704d6837bf[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cc0e766057e1d8d32290ca704d6837bf.bin
Size

471KB
MD5

084ff53cb62cbe350dfbec7a9dba8d5c
SHA1

a89600113a96507a839e715c762aebea7a6267cf
SHA256

78e1d555e1d462d31386452163aa05938651e4022eb01d051454bafe8c71b6cf
SHA512

ac1013bf2dfac2547b1d4d6a026310fe14dfc65aee937fbae5f9205e81d6933919e2f50bf3c4ea6bf24eb1ab9f692b7b5eb5e95e72e0f08782eb2c8ecb1a2d25
SSDEEP

12288:byq3oGTj70K2OWE5u0dcRyEA8wmiztcY2qa6zWbS:moRMK2FT0yTAtmK6Qa6ybS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/6d96c40370186727ac97e46feaf107359d1c19813eedbbc7575c56770fa03741.exe

Files

cc0e766057e1d8d32290ca704d6837bf.bin
.zip

Password: infected
6d96c40370186727ac97e46feaf107359d1c19813eedbbc7575c56770fa03741.exe
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 639KB - Virtual size: 638KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ