91f9995d4a2bc9ce890906439b796f29[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

91f9995d4a2bc9ce890906439b796f29.bin
Size

17KB
MD5

a90429c40de438b428dba3b149d0db98
SHA1

bd01774b60d575aa4d53d8f1102b1b1012bea858
SHA256

f6d4d74275817f03f4d33f92716f94b09573d2962ecf1e32e158f79ec6861238
SHA512

5fb5a6d1c1dfec9e4497d037e7f8263decdbcffaebaf24198cd8ae8c5032ea0d8cbe311be7e0ca45736bb7593112a16560090de47f947254d501549890b63f19
SSDEEP

384:jpphoDvYxjopK4OqXkXpDZyODeW4t2fiYrZqr9:dLivYWyFfZen2qUS9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/d2e04274b842009181f6dc30792f0f15837b92e8effe06f1de08e96453ecfb32.exe

Files

91f9995d4a2bc9ce890906439b796f29.bin
.zip

Password: infected
d2e04274b842009181f6dc30792f0f15837b92e8effe06f1de08e96453ecfb32.exe
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ