1376e647e1307b5b5f02f7550bbf145a[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1376e647e1307b5b5f02f7550bbf145a.bin
Size

835KB
MD5

1376e647e1307b5b5f02f7550bbf145a
SHA1

e388d974dc206061f71c6760bff5a3e47634dbf2
SHA256

266d7dc2284ee4ea2584d3118601fda243462f74e98f5c24114baa97f30693ff
SHA512

780a990e8d1ce358aa1a0c127f5ca9db8a77feb88822b7c97122c611039b655fb7d0edf96219a922e9277ae81c5bae79c467e9b220b1aa3e242382ce58ebf1ed
SSDEEP

24576:pfGHOrSrg16CidclB8AnnVTWlU2hWhrFm9vB:JAOrl688AnnValUo8a

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/0rangefreeze.exe

Files

1376e647e1307b5b5f02f7550bbf145a.bin
.zip
0rangefreeze.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 162B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 200KB - Virtual size: 200KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ