c67cb967230036816fd0cbbfd96959c6[.]bin | Triage

Sharing

General

Target

c67cb967230036816fd0cbbfd96959c6.bin
Size

6.2MB
MD5

09352578e0504426c0babefc1ee9a22a
SHA1

97d4006e9c40cd441d2b5193c345c21b7f0f5367
SHA256

6e6c74eee709e50571394cf6cfdc6965b412dc1c694132387f592c69423ca62d
SHA512

433a8726392097143c1cac6744f563a92b50007d0ef8ab07f3e66411fb9b99222a059e7c8c8962411502fbf516443057e3027d9b7c0b24680b6a947ed481d006
SSDEEP

196608:mlmo5Jg5DH8jXeiRYM7P2xqtjlEdzTKKUoE:XuJ0iRbz266dzeWE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
unpack001/d2682ee0fe9e5bf429b7bea89d32cf417c3b684429dbff5e060b07e7335aaa76.exe

Files

c67cb967230036816fd0cbbfd96959c6.bin
.zip

Password: infected
d2682ee0fe9e5bf429b7bea89d32cf417c3b684429dbff5e060b07e7335aaa76.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 6.3MB - Virtual size: 6.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ