9378f26af2f583932f75b54c25869bcc[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9378f26af2f583932f75b54c25869bcc.bin
Size

507KB
MD5

dbb39edd4eda6a24735f6ba2bff1db62
SHA1

1a92a2ef80deffdf7c7d8729f3c3f9e04c1e6a7c
SHA256

ccf4f8c8feb9b8d90febcbdaab952b13267f9524c2aa464adbb95e778c58cd9e
SHA512

a5af260b93191927d7e4944a8bfc62cec72106b314dd2d539805f75836e9d3331d39558065950591b94fa44e90b461264d73ab1589178f5050f552cdab775058
SSDEEP

12288:BqL7c/h8KKi97fxl2jiu7BF6UF3Svm1R7+guJL:BqceKKE7ZIjJF6UUoR7+F

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/BANK COPY.pdf.exe

Files

9378f26af2f583932f75b54c25869bcc.bin
.zip

Password: infected
8d39b7c6c1483f3238f367e08403fbe71d045b4ca2d56d8742c48a672f8eaf83.rar
.rar
BANK COPY.pdf.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 526KB - Virtual size: 526KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ