3daa9eb37e6a2e9403cfaf7cfbfb7ef2[.]bin | Triage

Sharing

General

Target

3daa9eb37e6a2e9403cfaf7cfbfb7ef2.bin
Size

650KB
MD5

fc4cdce0686335e16f55d3bc60f40fa5
SHA1

cf43feb646c50b3b6d924c3c7ffc6ccc57c97c65
SHA256

b1ce2a99e773e232b50866a6eaa0b46d19055758d63b0e93c9e562a0a988c76a
SHA512

398f59cb35932889706ec640b7740df3eb7f0c473621c6e9ff54a0a47d3025a0274a2e12d951d3a82a2f76a79af2d0f6fefec8bbbe81e678f2afdebd4faea4f5
SSDEEP

12288:6Fhzn0SnE/6QTSH/rMCGL4D8Tq4/ykuTb/wBeq+74PqEQIJ4PgVTBWDkmSdU:010sQT6MCTDR4/OI/QIJwguImSdU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/18ffaa7d4c8613341e4da339712da82b27cb86cfd686d8c57a820ff559a2943c.exe

Files

3daa9eb37e6a2e9403cfaf7cfbfb7ef2.bin
.zip

Password: infected
18ffaa7d4c8613341e4da339712da82b27cb86cfd686d8c57a820ff559a2943c.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

vhOg.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 705KB - Virtual size: 705KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ