92b68caaeaf91334f797dcf77b1a9dbf[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

92b68caaeaf91334f797dcf77b1a9dbf.bin
Size

19.0MB
MD5

8897adb1766fc760137fdc48fc541dbd
SHA1

5709fb7dd7befcadccf0fcd985a2445cb59d211d
SHA256

0e2d86e457c2dc3b3d5bdf37bae518348d6c9635fd54b36306386bdeb48603d9
SHA512

86de14f0bbf3db920a41699d3b99fff32300c74a2397d8e90ba25e93c9a2079c31b8701b02db1413a90f02e98f3bab904eaabf92a3c2de40a43f9aa32caf4f3b
SSDEEP

393216:WKT73w9vESrsqm2HOUAZG7vryfIsWy20cmCLjU8R5OYuaiR:WKTuESrf3uUAZG7vmfIsPWnR5O2Y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/caa354f6430afce0cbf7da634648b1afca3f35d34464795fcba6164865e4909f.bin

Files

92b68caaeaf91334f797dcf77b1a9dbf.bin
.zip

Password: infected
caa354f6430afce0cbf7da634648b1afca3f35d34464795fcba6164865e4909f.bin
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 26.6MB - Virtual size: 26.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 284KB - Virtual size: 283KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ