b617a6a12b850a9e5ad881b143074f39[.]bin | Triage

Sharing

General

Target

b617a6a12b850a9e5ad881b143074f39.bin
Size

423KB
MD5

e92ef3ca036ff6016ec75546933c9525
SHA1

0dbfb2f6ad59f92e038b615215a2c2767f2c8c21
SHA256

09c053c0a75d4dc1c4479a74804720cd4cfc42afa744923e1df62eb8a94b2141
SHA512

1da2671ece986b391f23d72612da56e3d1c268b612567096a86515cd203082c9b8ef2e251e349c403ad8c15da91385685bb624d8981071641bcfe11803d3705a
SSDEEP

6144:5yntH3rlTnyR7SMugSk0m2UAasQnbM6fM+cxddtD5MS+DTr0bra8iQIqCC+w4lLx:0pbCSDgvuUpHbM6MHx7tySgUbrEQ7QN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/954ac4022c4ca231ad8dcc85b327c427257fb567237ec503a1d402814c39df61.exe

Files

b617a6a12b850a9e5ad881b143074f39.bin
.zip

Password: infected
954ac4022c4ca231ad8dcc85b327c427257fb567237ec503a1d402814c39df61.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 729KB - Virtual size: 728KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ