ceb9c2b2ff2f8fa815fefc4ff8fb65e7[.]bin | Triage

Sharing

General

Target

ceb9c2b2ff2f8fa815fefc4ff8fb65e7.bin
Size

628KB
MD5

0e3853bfa7f4c4d1c06b4bd8bd192633
SHA1

a7c5d96d3d1fabe3af741879633e3217889f2441
SHA256

1b1526183f130872110ca6c99028a487a0c2a1836d77458b7c4764b68e2e99dd
SHA512

b038e456a7368a9b5106701b0f73dc124ef576dccbaaa5be84a0c392fcf118c8816179f5291b6adc67e2d5152fc56920bf8eadb67403c11ef77969a6425dca28
SSDEEP

12288:I0nSz/YzK6BwSPSpHbJHcUX5pC/d+CEQG1LGZg2u9YTVMSNrJquaTT4reyntI:LIn6BUpHBcUJpFQG1LUg/9EVMWrJquWr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/2c1f623ad12b2a7c372522670e109fc16c58d135179cd2dd4036723f961f412c.exe

Files

ceb9c2b2ff2f8fa815fefc4ff8fb65e7.bin
.zip

Password: infected
2c1f623ad12b2a7c372522670e109fc16c58d135179cd2dd4036723f961f412c.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 656KB - Virtual size: 656KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ