e02baf1162ff917a6fc22b52cae224d6[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e02baf1162ff917a6fc22b52cae224d6.bin
Size

626KB
MD5

143eb7c17d6c476026e06f30505d46ab
SHA1

f5b61a85795d7eb334bb82a2740ded25f1b09300
SHA256

0a7f5d09678469a109f0d5ced7f09ec60839df20637ab17f49a652cf27193495
SHA512

d801707b8397856152557f4a1650f5d8d3867f18f0e58afebb71a955e43a351109b51f9dfea3d657f96f69dc64ab812af6d3bf44632077777eaabe3833128ea2
SSDEEP

12288:HvVDkqPXU/bpjM1FL/qYlXR7I6AZ3cgVe5PomQr8TMh47Ft8WkX:HvVDHUTp0L/FRW3cgVSMhwX8b

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/5c052358e586f6c13f6b87a424648e4a36629f3998cb90baf6372e1ce37b6920.exe

Files

e02baf1162ff917a6fc22b52cae224d6.bin
.zip

Password: infected
5c052358e586f6c13f6b87a424648e4a36629f3998cb90baf6372e1ce37b6920.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 642KB - Virtual size: 642KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ