61e7842d593f985b71dcb89b1d12a097[.]bin | Triage

Sharing

General

Target

61e7842d593f985b71dcb89b1d12a097.bin
Size

512KB
MD5

8783fe876b98ee3548be39dff4acad64
SHA1

e6c848681c20b7cfb3849d62d3951d65abbae8b5
SHA256

e8ca783a7de69dcd29901ade478be23d9cb356283f836fb94337ac01226c1abe
SHA512

61b1bd00ccf934d42dc593acd95f367b8b6d3f2b03a49734c5dfadaba2b5306e2f2bb40b6e21e8adf034a83e226263eae8a74fe2d03796b947d8337272cfb256
SSDEEP

12288:As9clDzgjM57OxaNV29AkFT3feK3v9gHrzCdhDtNxgb2dP:MYgcxoV2yOP7MM5aby

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/efb834b38792a7c5f000b0683aa6fb5999fd2c0d6dfda9ba417f990fbe1041b5.exe

Files

61e7842d593f985b71dcb89b1d12a097.bin
.zip

Password: infected
efb834b38792a7c5f000b0683aa6fb5999fd2c0d6dfda9ba417f990fbe1041b5.exe
.exe windows:4 windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 594KB - Virtual size: 593KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ