9fcf21603085f607c7a635ca03d8b91c[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9fcf21603085f607c7a635ca03d8b91c.bin
Size

502KB
MD5

41380edf6554aa950b22b9de498a5a4a
SHA1

69c9c07358225d69b4b2c41f629cddfa2dd4a168
SHA256

de4bca1b16b29227d488eec5e9e75129288aff13711ee7ef51c2232af5f8c91e
SHA512

b1b6f8fb3a798e0f709eb16b871a923e432778f7256a9bc3fe8f77bc49d886784ac21be5847e0da38e1cc6a068ffc65fd66b2d99f618163cf6e86f5342fac622
SSDEEP

12288:Tk4vwzQEIY2dffuAq8vRyhAK6VgWOnph0hChXqUG7kzWyPbL1:DhffhqUAf6ZOphZ8+WyPH1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/0b675485123aef301b8f33a5ebca2b1dfb12c7bffcdc7331dc16615c9d6b0495.exe

Files

9fcf21603085f607c7a635ca03d8b91c.bin
.zip

Password: infected
0b675485123aef301b8f33a5ebca2b1dfb12c7bffcdc7331dc16615c9d6b0495.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 509KB - Virtual size: 509KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ