44fa5769ba4d77a578406f327fafe0a0[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

44fa5769ba4d77a578406f327fafe0a0.bin
Size

735KB
MD5

b7193bd7d98a9c5956d6ab4920198fcb
SHA1

37dcca6bb7ad3fc11c107837c532f5aa49d26655
SHA256

7f6c34031eedbcf6f074ad33f11944470b35d3b6c1ba1a45f5b1858a1c3e1dbd
SHA512

8a568635f541c9088f24bf185ad1cb2caa98ece4fcab5d203550b934f4f0f880f82cdbe4a16e8a972036751fc0b5792468de9a219e6f739a38af9be94f0cb588
SSDEEP

12288:VTDaKmUBo7JqVUZJGieitPAoVBaeRwTL1J80zQbvizvf/sE6m7E+brD8v15:VTeXUBo99X7eilRm/QOz0EX7pcN5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/0c0b8cfcdae8cc7d8a0b193e9e14d060138396c1c3635ba1f346b2836a51de0b.exe

Files

44fa5769ba4d77a578406f327fafe0a0.bin
.zip

Password: infected
0c0b8cfcdae8cc7d8a0b193e9e14d060138396c1c3635ba1f346b2836a51de0b.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 819KB - Virtual size: 818KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ