dca8cceaf9527048e33a1ae7b08151d7[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dca8cceaf9527048e33a1ae7b08151d7.bin
Size

15.4MB
MD5

bd01f4a5750208b400d983a9c7a82731
SHA1

d6e5097d8a0fbd2de376fb0ce3f64e517091c0cc
SHA256

d18c0c5f6bb0409bce43773c5bf7e8d7f5dca7573c4da5cf1b9d5ea1dc26898f
SHA512

5d47c734d4fb974b4ef9b344212dc26cb27db05fc1295dcf8c1833615b6c0ab952323d2fd6d079feeabf02737e16389b81d405a4842a49d112742a6485fc716b
SSDEEP

393216:PSsfsMvzqBqqDveDeAVvVKfW47Q6pS42UpfSx29nKRKyQh:P1f/vzWnzeDeAVNKfrB2UUA9nVyW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/026d1018ff9caa454e8fa4c2b1efcbb3dd8745f1bf2ef47c940ea44dbc4c51a1.exe

Files

dca8cceaf9527048e33a1ae7b08151d7.bin
.zip

Password: infected
026d1018ff9caa454e8fa4c2b1efcbb3dd8745f1bf2ef47c940ea44dbc4c51a1.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 15.4MB - Virtual size: 15.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 92KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ