99df0bac774c76e499a2f8420bd581d8[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

99df0bac774c76e499a2f8420bd581d8.bin
Size

636KB
MD5

bc3863f7e74ff95ab42b1001b541137f
SHA1

2d2b4fdfee93fc1249987bd02809e867afdd93d5
SHA256

759ff71f929e3a723d3861378ee3daaeb734823c9abbfa78d23812b23256659f
SHA512

94bb2065ed13e963e39fa80c8d41ddc20c07d2ba6abdb574b73707a17c28b5a0c11b54125bc103bb06c52276b26e5253452f2388ebaf6bf31cfce5d0bfb29dc6
SSDEEP

12288:buueSyoJIX0zZBluLO1vjLveEh6XYb1KN/ndc2ZJwZdkr1Z12ilQ34GpplgUTkFC:bzfJO0dCLkfGEhslwZdkRZsilQ34upll

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/4e1b1d2b65eb422808f2ef3d8ea6c548310bea1681efd33a9f3a8abce71cfb2a.exe

Files

99df0bac774c76e499a2f8420bd581d8.bin
.zip

Password: infected
4e1b1d2b65eb422808f2ef3d8ea6c548310bea1681efd33a9f3a8abce71cfb2a.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 659KB - Virtual size: 659KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ