012ba921b7d9f12671e476fbd91d1b9f[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

012ba921b7d9f12671e476fbd91d1b9f.bin
Size

480KB
MD5

d73d90eb0c497ca08ceb56a1ad9b95e3
SHA1

9850143a263de6510a45f671afaf40bfd277d6cb
SHA256

e4584bda0fdd59ec5d1b5f528915c180d8f4a7f4876590d801477762aa52983e
SHA512

6465296892984f4f65b30622500980c9c3fb8ce05d27c2d63c83adf6d8c2e0e91bc752c4e06c7a94520e48e4b681ef56b4447c35f07cc71f04e86f6c11194b09
SSDEEP

12288:CtHELRQKpcGbE0QZdAgGBX77RTKLK4uIqz+0z1:mHARQKBEnZd9+X7Fmu4az+0z1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/a2e10236dab3013a041ead462b2b280af3f4e9f96a3ca878579dce7d8fef23ec.exe

Files

012ba921b7d9f12671e476fbd91d1b9f.bin
.zip

Password: infected
a2e10236dab3013a041ead462b2b280af3f4e9f96a3ca878579dce7d8fef23ec.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 494KB - Virtual size: 494KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ