d6a96992b306f31e83a8254d62b45fc4[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d6a96992b306f31e83a8254d62b45fc4.bin
Size

715KB
MD5

55076359dfd560cd5863fb6438ab188e
SHA1

bdb0a7a08b5eaffb8ea4fd8c21029c635efa1bd0
SHA256

eff4bc81d56d1a10d0be23dbd88869f99f904646fc466e45160ecfc80985efad
SHA512

63af42625a32fe9fc073491cc7b0f615cb9d1b50501fd42b826403b03b00f674b54285cbf0794a950779e44bc17a021b309a3d3c770c640aa82697f9374a65ae
SSDEEP

12288:5Mh3vRfYgbfptPZ3gAlish3Wq2VcYjMS/kRkb8RV8xnNAhoHpuA/lQW0H1yvhkBz:eZY0LXDhhMckMSsR0d2q3lQ5AvOV4EsM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/495c9826ec56d32fa8ded966e3d6c461b43bfb042ff9e227e75fdb8f55435208.exe

Files

d6a96992b306f31e83a8254d62b45fc4.bin
.zip

Password: infected
495c9826ec56d32fa8ded966e3d6c461b43bfb042ff9e227e75fdb8f55435208.exe
.exe windows:4 windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 778KB - Virtual size: 777KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ