a9afb4ac1010d7fda67100b4375de286[.]bin | Triage

Sharing

General

Target

a9afb4ac1010d7fda67100b4375de286.bin
Size

333KB
MD5

ff71857773d89e19c6c5ee4a446b2e3c
SHA1

60472d0f67b167bf24ee5af5e972a3e88d433074
SHA256

d83bb80061803bbc8693db260f1655f5a7046f236957accf4c00f3ce65881520
SHA512

2483a188b66fbf688266f1228c85f39f29da077eaa43e70ae5eca9b82b7bbf8e54f07aa21f1ddb80923c821e4f6411d948298eea677107d368e6792e5bd89b73
SSDEEP

6144:MPd4yriMblQHhPTcbIxooemuYnC2GgYMErP+uiH0VTPE/imv/g6KA5qGQFvdtdFU:SpZblQBEI6t4nCbgYMq8UtP8imng5NDU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/ca0969a10ef9353ff9053efd4033b4d01eceb0c490e9b808108bd7740064f068.exe

Files

a9afb4ac1010d7fda67100b4375de286.bin
.zip

Password: infected
ca0969a10ef9353ff9053efd4033b4d01eceb0c490e9b808108bd7740064f068.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 362KB - Virtual size: 361KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ