5d86018377d9cf83e6e2c08fd9fd60d3[.]bin | Triage

Sharing

General

Target

5d86018377d9cf83e6e2c08fd9fd60d3.bin
Size

1.1MB
MD5

69dfb06884612a034a0e76805e1f42a8
SHA1

370256179c6dc72547c5f4a95f004e1db45cb4ed
SHA256

e0b11452031eb50da413a54781c376ec6f5793a70786eb14dbb077355eae7e88
SHA512

6c935eb67de8fe11f78afbf9c90abc35eb9ec2eb6600df3a8bd0bab16a12b71b1eb6c02c1e11d96477ca437adb6d8917a3202b5e4726938e954290563877e630
SSDEEP

24576:SrK2n6n+XWtu0b8Cfny7ok1xJljHGCIQvvdU+4903eug0QHW:VmGtu0b8CvTk1x7aC3vvO+4C3en0j

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
unpack001/1c1a28fdaac92ef8a7f6032dd94cdc56a690fc78c99910a5b78709435ea992f3.exe

Files

5d86018377d9cf83e6e2c08fd9fd60d3.bin
.zip

Password: infected
1c1a28fdaac92ef8a7f6032dd94cdc56a690fc78c99910a5b78709435ea992f3.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 160KB - Virtual size: 159KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ