ca0b8a45b640bcb527ed9af51fb02a40[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ca0b8a45b640bcb527ed9af51fb02a40.bin
Size

152KB
MD5

97dbdfb65d99146093229f82598d05ed
SHA1

e0e33d7788bb23bca803feafdf6fdf4d4896c48e
SHA256

0054103975d1d23e025f182b4da58f26233f6c40b8ab7dcee0a6584be9d60dcd
SHA512

6ca802a6509f0559dd951fe66da04a113e62d3c74a8c2475a8d43897108ce7528e6bf4cd34a5b6d29a2e77b727552a7784b3283a19761c9cce751026df12cb72
SSDEEP

3072:D2vshP8aYGe29UVi0XFV5MXpo4fvUMtrUhZlyk2YiiYQOo5WKFdjt:SvsCE9UhbulkMtmZwlWnjt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/ee753ab736ce308017d71ceb9368128b9f59aa8bad38df0aa942b54c678519c9.dll

Files

ca0b8a45b640bcb527ed9af51fb02a40.bin
.zip

Password: infected
ee753ab736ce308017d71ceb9368128b9f59aa8bad38df0aa942b54c678519c9.dll
.dll windows:4 windows x86 arch:x86

Password: infected

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mscoree

_CorDllMain

Sections

.text
Size: 180KB - Virtual size: 179KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

dDaV8/44
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ