d2bdc91605309ec56123e40679f4cbdb[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d2bdc91605309ec56123e40679f4cbdb.bin
Size

623KB
MD5

e3cc69a55155de70a291690c1929d2be
SHA1

98e516f10155ddd88b98c8b6118466c07dbc11a8
SHA256

4b901bfae7a7dc6b988c465bef8eab99acb841e03935e8452564f69750f17af5
SHA512

ee1e4fe87389233618a5cc1f2cc0dbc205a59172181e1d12334a08acc78dfce1884366f40ace0691d910fd13e54af84d007501172175228e6c4cb8dbcf264794
SSDEEP

12288:KYZCC6+FOhGkCFt0S6BFGhPOH6erjsjJhcW+nXh8Rt/WznpM+h:jgUKGkCoS6z+OH6UMcLxG/0h

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/1c0b0cfca9a02707a6f7510c8b47e4769b7c6871f9525c24145bd47e3ec2209b.exe

Files

d2bdc91605309ec56123e40679f4cbdb.bin
.zip

Password: infected
1c0b0cfca9a02707a6f7510c8b47e4769b7c6871f9525c24145bd47e3ec2209b.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 675KB - Virtual size: 674KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ