6274ee7c346dede5e1c350da912f7784[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6274ee7c346dede5e1c350da912f7784.bin
Size

1.9MB
MD5

7dda5604528294573bbfed8099799dc2
SHA1

ab63d98fa02c1cb46d80b7aa7c87c1e1736fc815
SHA256

d0e4882ba45b4943254f550101cd10f08b11e0f65a9e46a8abe3c5faf65444f3
SHA512

03b326bbdf33c1953983643646af41f05b34ea771c293c30c492b69784745f4895edb8e9768d2e553162200baf2c90acb8193ce28096019f01b867da5e880b77
SSDEEP

49152:QPoHjbCsRjtx9psPV7NXjs1mVUYgRywibQBmfvU:v/tRjt41NXjsQ+i0BmfvU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/ad7af6aca0ba3d2fe9adb3f391800420800c0f6aa00db064fc1292232a6d881e.exe

Files

6274ee7c346dede5e1c350da912f7784.bin
.zip

Password: infected
ad7af6aca0ba3d2fe9adb3f391800420800c0f6aa00db064fc1292232a6d881e.exe
.exe windows:4 windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 2.2MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ