4c386a3d7503f6c5e5bb18ea790839bf[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4c386a3d7503f6c5e5bb18ea790839bf.bin
Size

550KB
MD5

f4f3f53c773b8a5820df813227936377
SHA1

e745fd7a92db2014e560c5975d4fb6a5b3bf4669
SHA256

f4685f464984ed57ef222aca3a61002432696d6ec8df3b0c1b3bee424054965f
SHA512

01d8e31af597d2acde04c5e3158b11acd2e320aa68cd4d2c93e34310e030c0db3fb9dd734af2fda3d602dcc321061bc3cac57caca2a545d1784ff507edca5c69
SSDEEP

12288:fKEhKvphaHKuRai0pwlqXrLzffJYVzgc6gg/W9BU:f/KeKuqq+rLzfRkp6k3U

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/9a51ed2069f54c90bac392ebb1081aa64dee9c2705df9944bc43db671c87dd94.exe

Files

4c386a3d7503f6c5e5bb18ea790839bf.bin
.zip

Password: infected
9a51ed2069f54c90bac392ebb1081aa64dee9c2705df9944bc43db671c87dd94.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 732KB - Virtual size: 732KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ