1c6faacb8862c545c18ba4bd01cbfc39[.]bin | Triage

Sharing

General

Target

1c6faacb8862c545c18ba4bd01cbfc39.bin
Size

130KB
MD5

dcd6afab63cee80380333ccb4c0f50cc
SHA1

9d4824676ce8c45a7375d38541a26540dd2a007f
SHA256

88a35b8efbb78f169b076d273c367a1597dc8fcf8792a9a61c895fde05f03a80
SHA512

c743b45363c8494294b08707ea3544c454ddcb9587fb7ec1a08cc43b48d33f42479644d64b58219d3113ac2474f51373f761caccd1a8b6adfdc957a79cc6795f
SSDEEP

3072:uGahSAyRoy8zsJ6ytEA/VsA44oQrIwxifgpZHD5D41uVIvW:ub5yRjAsJph/iA432IwxyAHVDrZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/dc7d22484f35ca6be941995a604bfa43b31c8dc0fead8907f2a1b5a586ae610d.exe

Files

1c6faacb8862c545c18ba4bd01cbfc39.bin
.zip

Password: infected
dc7d22484f35ca6be941995a604bfa43b31c8dc0fead8907f2a1b5a586ae610d.exe
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 301KB - Virtual size: 300KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ