ef8d477861854541592ffe50ce56d3da[.]bin | Triage

Sharing

General

Target

ef8d477861854541592ffe50ce56d3da.bin
Size

879KB
MD5

eac3c8a7fcfab795aac5e9a958ba2ab1
SHA1

668c8090dcbe51d8a98c7983254ed45ac93354de
SHA256

9a61af111cbd13d732b4b7a62c03fe4d3f0e725d61a4445eef4b76d90f79bd12
SHA512

84d0f7e02524c8fb231835894fd014b4a2275df05ab6ed8c25b5d1112b8c857f21130fcdf945606421f59f29bdbf1e8fbf54306b29e2093abeb200f72b215b02
SSDEEP

12288:n566jxl/WY4hpX5rRVZ3D9Ij3fz+qKxC6vfPLuZs/CdC1nmYPvQ/8nH6xsWqL+MY:n5hb+PrpZIP+qKRv3CsdmYntiqwV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/c7b9dfbcf65edd98aff82ea3e1ffe6b0f83eca9c3c892de4ac8681fc1a2bb6d1.exe

Files

ef8d477861854541592ffe50ce56d3da.bin
.zip .ps1

Password: infected
c7b9dfbcf65edd98aff82ea3e1ffe6b0f83eca9c3c892de4ac8681fc1a2bb6d1.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 927KB - Virtual size: 927KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ