ec1d507952bc9719a326b4be5fd6e945[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ec1d507952bc9719a326b4be5fd6e945.bin
Size

865KB
MD5

997c6eebde7b6f6064660f730c1c57e8
SHA1

6916750582447a57d5f7336e9e4463a3c29be6ae
SHA256

6cb1be1ca5e98184c40aadb5e8eda79ea9af0b163fe793b8550bb21a51d9827a
SHA512

4305aded59fa34378a0c859ecd62db3fb8679f317fd310374083ff07d77cc358333367d42a421af99b9a1596a2ac1d3ca10864875315d138310b82c339b17a1d
SSDEEP

24576:Dbo68SAV1h9I7KT0d1u+51a1RkfoURgIUbZr8cBpMk8qqTM:DbmS+I7Fa69jUbZb8qIM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/36dac2e2afd56614ee9cbc952f5ec498f228255b63cdf75a4b6be098cc4a50f5.exe

Files

ec1d507952bc9719a326b4be5fd6e945.bin
.zip

Password: infected
36dac2e2afd56614ee9cbc952f5ec498f228255b63cdf75a4b6be098cc4a50f5.exe
.exe windows:4 windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.0MB - Virtual size: 1.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ