42094544076f19b3b26b5e49bba6d8b1[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

42094544076f19b3b26b5e49bba6d8b1.bin
Size

688KB
MD5

d3931b538fda20d020f140f6b37a2320
SHA1

3113d74420fa44cb54063c26f841783defe8f9b3
SHA256

8a3cb4ecb61cab7cd6ec5b27449c434d5261c34aac72257f5c6f630fd5a3c366
SHA512

a98ac2c395f3d3e5ff78b7686e50cd8a665387f9c05a6363fd8749ad48f3eba1e93d7a0dd0a1199c6c93eda008250662dafbdadc99c53b77d7fa0c6e423be334
SSDEEP

12288:+v74KKWoVJd8NvvOFEE2GLkJDAAlG1qAvDJ6AQg9X6N1sE6W84/ondGU4pe7XA+o:4ngLwmFjLGA7qMDbwQ4U4pe7G

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/fd82749104473f4be5f7498f2a751f4090f999c50ae63e114ea49067c2b16185.exe

Files

42094544076f19b3b26b5e49bba6d8b1.bin
.zip

Password: infected
fd82749104473f4be5f7498f2a751f4090f999c50ae63e114ea49067c2b16185.exe
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 842KB - Virtual size: 841KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ