ef02fb4f649d5e2eb998a2874cae6c62[.]bin | Triage

Sharing

General

Target

ef02fb4f649d5e2eb998a2874cae6c62.bin
Size

622KB
MD5

0fc38d3489f7425b666f06c676003345
SHA1

8d114be6a85fd6f1ae7a155caa5202a2b1fbeeb1
SHA256

37b4747d30017cb76c49350b9b961a3119752ef347df00fbdf6428f8289eda1b
SHA512

b49f8baf8319b6bec965431373d9c28b3e6f3eb5509c4d426ee01695fe284f8d2ffe54a2ce05a65d936c421ebf2e9ebd39bbf216fc3ccef783a4237c0645dc11
SSDEEP

12288:prdrOHM+/ptmwmfyw/WKpufcAwsFPq/A9bMvxBXijpVpg9slkogKYC0:vQrcwcyUWKipdSAyxBX6V+6QKYf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/4fa066bf81e73be8c55139382fba7c7c33fbf12d2a28a6d8d55e09f8b430190b.exe

Files

ef02fb4f649d5e2eb998a2874cae6c62.bin
.zip

Password: infected
4fa066bf81e73be8c55139382fba7c7c33fbf12d2a28a6d8d55e09f8b430190b.exe
.exe windows:4 windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 669KB - Virtual size: 669KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ