4fe035d4ad7d6d2d4c6b2c72bb452479[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4fe035d4ad7d6d2d4c6b2c72bb452479.bin
Size

645KB
MD5

49a5c8616dd54d0453b0a7682e68cd21
SHA1

01098cc5182381249143d8ead49fb656de9f7e50
SHA256

a18b1a5a6972743240144b65253b1e537c225316e48d763b1f11a6351e98a9ff
SHA512

2b3800710085a703610aa1ab6657e4302d1049d24dbd182c94aa1fba7b86bfc85b6c100447413d4d06ca90942add49455f5a5175095e8a1e13dc22ed96a99f05
SSDEEP

12288:+g1fTyKsEHrx0knNjc7hwpkZeC3rbhr6/z3cd/KCwv469qmoNFQAcYIqWKUPWA:+gx40tPnNQqpkJ3f10YdXVeoNc6WKUOA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/861858ded7f88ccc9998eb6286cf9376fe7509a04901808bc5a3d35b076412a6.exe

Files

4fe035d4ad7d6d2d4c6b2c72bb452479.bin
.zip

Password: infected
861858ded7f88ccc9998eb6286cf9376fe7509a04901808bc5a3d35b076412a6.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 726KB - Virtual size: 726KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ