30973280fff56dd2c7cecac9f3e556fc[.]bin | Triage

Sharing

General

Target

30973280fff56dd2c7cecac9f3e556fc.bin
Size

667KB
MD5

224c2f5e54b5e81199335c9eb7d5b3f1
SHA1

cff8e1c7cc7a51c7b6834bdefa3eaf2b57af45dc
SHA256

e3c4cf47173cc3f476b06c36f82da6f71a6694ac6be788278cb42954474bffb9
SHA512

1e686cf30b30a333022287b1861f3e13a2d124493ef743665ba1f44a34c900e0abba4758ed6e911d0aa4122e68fc06c365760d90b534883e29ac1f5e28f036ab
SSDEEP

12288:RR2HxjUn8fs9DgQrcTHX0fWEBB7fnxLHsN4F/bB:RR2xQ8BQrckWqBzxlF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/4caca79379d7a82fc6348039c7a95f463be1462a5e6ef4c4e5b1f26e76fb4dbb.exe

Files

30973280fff56dd2c7cecac9f3e556fc.bin
.zip

Password: infected
4caca79379d7a82fc6348039c7a95f463be1462a5e6ef4c4e5b1f26e76fb4dbb.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 695KB - Virtual size: 695KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ