dedf47709ccc73cc599b1be48d34b70f[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dedf47709ccc73cc599b1be48d34b70f.bin
Size

523KB
MD5

3a2766b4affab7d80499f9c8d799486f
SHA1

88724e7ee0644a58437b66cb83dc16516a808447
SHA256

21d51e557273a4614ddda0f64b3ef9d13db1a39fa05ed48a9a6ffdfc6237a093
SHA512

6601b44e69155dfa4e3c3c94b03828c60698b94a2c1ad928bf8ce3b71321aaa6ebe1bc7a1caed884277312caf78d5a7aa3d940d3eed878b2e7886cc5cc9bf126
SSDEEP

12288:MWXaqivP1yRk07C9xxWf1+HCB7h2bvtpMQbalaxOdFkZezSrw:MV1yj7CnbHCB7s/baOuSlk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/7dca5662fe7621ffd890ac202dd50e9d22b8f2ca186490ad62d8813cc0727cdb.exe

Files

dedf47709ccc73cc599b1be48d34b70f.bin
.zip

Password: infected
7dca5662fe7621ffd890ac202dd50e9d22b8f2ca186490ad62d8813cc0727cdb.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ