39998ab0dacf02d116d78238238515a7[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

39998ab0dacf02d116d78238238515a7.bin
Size

634KB
MD5

935f132174f4ada6476c1ace50e59518
SHA1

2804039f9615ae8ace336ab79ca3853cc66910df
SHA256

de82de692ec769ac37df8a50a06d041d3a291332f7a20da1c3e2d436ab64c68a
SHA512

d7b91e5c22f56d12783822750c57cbd641ece1c7a1d9b696ae592c3a8d162b4ecaf8c547646e99bf7d526c22d6c4ca638274503f49b5f5e80c1198beb8e834ff
SSDEEP

12288:G6MqJkQAhFoTkIQipmgwGxZAGEuYFJiOX49zycIHv7awfjL/Dh9rV/Q7j:G6dszoTkI5ZAeE5I93wfHbhRVa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/c0e472a9146a7975b5908ee8974d49f83426627cb074189268959a432cb61ea7.exe

Files

39998ab0dacf02d116d78238238515a7.bin
.zip

Password: infected
c0e472a9146a7975b5908ee8974d49f83426627cb074189268959a432cb61ea7.exe
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 661KB - Virtual size: 660KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ