192f55e340f45009639d106530172497[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

192f55e340f45009639d106530172497.bin
Size

240KB
MD5

14e9fa9a5d1b8beb82b9a4106c7b28d7
SHA1

21bc7c4c467dfd97683c941cddebad3615c78452
SHA256

a9d2a31caa641bac2c71612d98ac63d0d6ab0ef8ab5847af0941a2c1b47a8be0
SHA512

679fb10c441466268149c7b199a0a6a528d231e4db5eed8766fd592fb160e7cfbf57a5e344160da8f6477e9b72e5a397040ed1f003e8f25ee744821b98014ec8
SSDEEP

6144:9m401XtM4uS6KzP+6Xztuxg2AyPGfpODJa4MB:wZdMtSVPTztuxg2bPCOYB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/6ed5196d0ec1ec9e51ae7983621b5ee77febcf49d8810c6ed935176e86535093.exe

Files

192f55e340f45009639d106530172497.bin
.zip

Password: infected
6ed5196d0ec1ec9e51ae7983621b5ee77febcf49d8810c6ed935176e86535093.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 423KB - Virtual size: 423KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ