ec333982af0977d8af5a4984792a4385[.]bin | Triage

Sharing

General

Target

ec333982af0977d8af5a4984792a4385.bin
Size

3.4MB
MD5

96a53e93c41a69299d89b93731ee4c27
SHA1

c5a18f040606819e10898012428f04bda4c9932b
SHA256

0d1cae55df38fd37663fa74a1840201ea190a6d333075bf686e0475e9e354cba
SHA512

392b9e88fce0172a1e1647531b08756730d3002b63737bb7a436606bfb9cbd2427b8634d8968628b75e5a5ac6d900072defa43b6ba9baaaebefa295386f6e316
SSDEEP

49152:snPdjNR+oWbfnbUjRo8wH35ukH7+V5/oK/GO7EvGL3SXomZk8WOrj8r4+rzZtsym:0Fj+o4bio8wDSVJd1S7BWOo4iztZZNl2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/bde2b977cdd7c086a35825a9ba7f2307341a3917f40cc193ed316dde106a6c74.exe

Files

ec333982af0977d8af5a4984792a4385.bin
.zip

Password: infected
bde2b977cdd7c086a35825a9ba7f2307341a3917f40cc193ed316dde106a6c74.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 9.6MB - Virtual size: 9.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ