4fbb009cb5d734a5f526c3cdbc650862[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4fbb009cb5d734a5f526c3cdbc650862.bin
Size

693KB
MD5

8c55b8ba30dc890c2262544ce4065ea8
SHA1

3548a29c181c2b6e404166e684ad9ac2ded72b1f
SHA256

8bd7c0e563c844531cb58fe885a7fbc14853ec2dd99968375ffaef1cebd9218e
SHA512

3893dd46accc5709ebde68d24a931060e7346a991542287b4d6cfe6efc4a473aa9f5aae014e03aa13220aad569e4116179b11c60b54abde3f963cd71071f6c1c
SSDEEP

12288:kDGADjrIGcrhZqujUHlQEbR0Pd8YJZGh2MIGcd7KumD/+K+cfj4b+9fei0Jp:PAXsINHltgJ8sCweumDmxFqReiC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/a3e89265c9a9a606c8dc5675055926944fbd877bdb8f72fb12d4224d0cdeb788.exe

Files

4fbb009cb5d734a5f526c3cdbc650862.bin
.zip

Password: infected
a3e89265c9a9a606c8dc5675055926944fbd877bdb8f72fb12d4224d0cdeb788.exe
.exe windows:4 windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 791KB - Virtual size: 791KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ