5fac40a82226f46504aef22f79233ad7[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5fac40a82226f46504aef22f79233ad7.bin
Size

117KB
MD5

f1644a85520fc104a73453b727c1d073
SHA1

da436abb286e0cbf4c34dff11c8683705b4f7e24
SHA256

4936e7b335466f7686e0fc1142914f9643e97838fc10c1238dd57b0dd4565280
SHA512

b2ab1c13d4d0b68c9e59b8980dc8096266aa6740d44d7f0861f5bc595938d539c0bc8ede349cc39c53a3d30d2c790458d9848b8090bfdbe122555d549906ddb6
SSDEEP

3072:/PqOxnxH1U6XWmfe8W5S9/bynvZfheTLwCHmjS9hZ8H+OqpM:/PqOxnl1U6X1eraWnhfokjGW+u

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/10265ef7d6568a1b67cd65013ecc2bb5bf98b11b8186a5f13f432da0c69613b6.exe

Files

5fac40a82226f46504aef22f79233ad7.bin
.zip

Password: infected
10265ef7d6568a1b67cd65013ecc2bb5bf98b11b8186a5f13f432da0c69613b6.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 127KB - Virtual size: 127KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 167KB - Virtual size: 167KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ