4e0a57febe7c13d6f294ea34cbfc5cbf[.]bin | Triage

Sharing

General

Target

4e0a57febe7c13d6f294ea34cbfc5cbf.bin
Size

758KB
MD5

abaccec9dc5a1f17d6f93e966a4471a6
SHA1

45d77c4f7f6f9825d7df316702420a7b34e9aaf6
SHA256

708e685f0db9aab8e31d170d6e05f85aa906273fec441a2e4a696fd140f6f0bf
SHA512

3dd792c067aadb62efc4f03516e8dfab09b2a88a9cf4165e2bd61400c84e447dc3a8dc05a919228657a19fec243daadcf5d89ce5cb703a506ca567fff61fbd0c
SSDEEP

12288:RnsgIU63GiypsQluNP9j30TbG0H//xhX3YYgFfb7iPqg7zJh5AZ8B+e0iql7PN7M:Rd6WiypsQluNlb0+0H3xh4YgN7Vg7zDl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/4af5374d05140e1ebf05625397c061e7e6e6396597399880f903cdda22466875.bin

Files

4e0a57febe7c13d6f294ea34cbfc5cbf.bin
.zip

Password: infected
4af5374d05140e1ebf05625397c061e7e6e6396597399880f903cdda22466875.bin
.exe windows:4 windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 794KB - Virtual size: 794KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ