dfc0c82dbd4308a5fc011911b96861de[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dfc0c82dbd4308a5fc011911b96861de.bin
Size

92KB
MD5

ebcaf04fe2be32c81fc9e5b5e909a8a3
SHA1

163b6ac9a6e6bf01ab5fa31a89878614e67cdf25
SHA256

332783698611572ef2f4c720fee1b1da5d8014c9fa82edd5e0a744079f49fe40
SHA512

02e84dc082a00207dcd7e251c1619e842703014d1d48aacd9f9be606038485c5393e9d4da4b31c11978bca135da0f212d060de59e37ebb65437a45673e26d05f
SSDEEP

1536:mKenEbuO3B1o9CnjbDd6k/zPsXHHnJjchFMcyNf7TpuHW9:neYp3B1Ln/pXrkXHHJIh+zpX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/da90cbee8d24652c8e61741897d65a6099c5e32c5b3eb996796c4cebd8fd7e16.exe

Files

dfc0c82dbd4308a5fc011911b96861de.bin
.zip

Password: infected
da90cbee8d24652c8e61741897d65a6099c5e32c5b3eb996796c4cebd8fd7e16.exe
.exe windows:4 windows x64 arch:x64

Password: infected

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 188KB - Virtual size: 187KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ