9b806dabd9cee3dad40a97c3c71c1d2e[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9b806dabd9cee3dad40a97c3c71c1d2e.bin
Size

23KB
MD5

e4fd9d8ef122b7a7c045be24751d0d13
SHA1

8e907a4b0ea73dd638b794d41a199b3b2389836a
SHA256

1922992c2e25550a64fe2ae75f56f3b7b32093cae9ceb4a84ee6c9142f6580e7
SHA512

aa113936d4de97b59c5cd3d9e19b2bef64fc3d730179a10193987bed1de17f979bcffab046bf0ac59ed719b0778a351e12ad1f673679f079c103d1f34dd95950
SSDEEP

384:jsbLyDUatgnmEo4SM+SOHQwNAY4OnKPpdCHiGKmiP5wTi83nuWV99h5cB2mcQBRp:wLMtglQrSO5AksPG2/xwThXuWV93KYmF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/cbb9ae140aadccf6839319b557cbd196d8991b59066f9934e9d7320721abf7ae.exe

Files

9b806dabd9cee3dad40a97c3c71c1d2e.bin
.zip

Password: infected
cbb9ae140aadccf6839319b557cbd196d8991b59066f9934e9d7320721abf7ae.exe
.exe windows:4 windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ