efbbe02bb03a989cf5670590180ea36d[.]bin | Triage

Sharing

General

Target

efbbe02bb03a989cf5670590180ea36d.bin
Size

605KB
MD5

fc58e9e2166c0dd34c24d3746da487b6
SHA1

fedfe0c36e1a5e5c470bf0a7a84ac2f8e63e6520
SHA256

c076ac30b07ffd092f202677096c5e1f21a016fc40dba9c0c29694a34df1b1bb
SHA512

2e20fa7074c7bca255e56d073342a23aef4bd4ba2d4a642b61de1e65d5d3d8d743d4463c000d9bf26cb6b779199172157a9e1090e3fcdf5bc6630536e8f86ffd
SSDEEP

12288:Wgo5SCciCaI9sZqacrZ+Gy+770aYZ9hzyEwkebsFA+P:DzL0kPZ5y+fIVrwba

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/9a2008be914863b763da0fec53a39e995cae4bb95a03aeb634c95ba7a6943522.exe

Files

efbbe02bb03a989cf5670590180ea36d.bin
.zip

Password: infected
9a2008be914863b763da0fec53a39e995cae4bb95a03aeb634c95ba7a6943522.exe
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 627KB - Virtual size: 626KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 92KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ