ec66e9275cccab12be65ef824dcbf4b7[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ec66e9275cccab12be65ef824dcbf4b7.bin
Size

668KB
MD5

a0ce8b3efd844870bcd090bef0438d71
SHA1

8cd7ccb0ab4f12d946fb2c27c44a450f3288c015
SHA256

8d4be7287bb3dd496431a04185267418fb402cfff093e1be507c779ddd94db27
SHA512

2fc49934aeaf638f24eb004e3345f6887bb085b3bb5bf6bc03989d8388b783480b5af856694e280f14ed0a11ce2f341d813ae8e2e4287972d4010e3d4e967f40
SSDEEP

12288:PkmFRIbfcw5AsnPgCUaOwOlORk0ueNmfrBWAnTRG1yGFZymWV4fgg:8zhJnopnplORp0cvymWWfgg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/15e37410e9086af3f838de53c781d2f9cdaaa65eef62a6ab53ac5cb096bff65d.exe

Files

ec66e9275cccab12be65ef824dcbf4b7.bin
.zip

Password: infected
15e37410e9086af3f838de53c781d2f9cdaaa65eef62a6ab53ac5cb096bff65d.exe
.exe windows:4 windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 778KB - Virtual size: 777KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ