78bc80152f20b3e8411b0e15fbd2853d[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

78bc80152f20b3e8411b0e15fbd2853d.bin
Size

678KB
MD5

809fed09555f85310bf571b71f8b2d88
SHA1

50813e89046ec1b7536b74634da4610c6926e0ba
SHA256

000ecb974a2b57db9dc6621b0f41cc2960899c7b435e32b77ebe03648651b016
SHA512

ee0b61df056f08c3f744d7611f0b1665e731669ae65a0d0894bb1a0da026a6a59cd68c4e3495cf10d9d2999d00fc0a3af0cb09d0c9959e02bacfffbf03e44f3e
SSDEEP

12288:xFdW2UK6BGmEDMZykym+xxGX2L/vsVUdNwQvAt61bi/EY5q4bqTsH3mQm9qI4dYq:1WxxGmVP0xguvKtsbi/Ekq4bG2BmExdp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/4e38578b5c0bfa9b222837756d0c2387d218aaa990b47befb98571cec82f6b32.exe

Files

78bc80152f20b3e8411b0e15fbd2853d.bin
.zip

Password: infected
4e38578b5c0bfa9b222837756d0c2387d218aaa990b47befb98571cec82f6b32.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 733KB - Virtual size: 733KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ