9cc2315d58203686c68c13889ed991b7[.]bin | Triage

Sharing

General

Target

9cc2315d58203686c68c13889ed991b7.bin
Size

671KB
MD5

87acb5d1e3087e3e4df0a7d45fdbb6e0
SHA1

0d24f454190910dbff21d37f97919311074721b4
SHA256

6c67bcd3153d9ad0764d03d7a44309be70ba58e43154370a53e2531cf3027054
SHA512

9e6e33411560f9629423ffb012050b201047507715bff498bf3c6a932b562a5ea211940602539ef9e83fc62e5a4b9f3b5d66bbaeac81005a928eaa1e1fc18258
SSDEEP

12288:z9bRiPYxYqqpbf1IMfHqyN5kThr8Ed3Bz+Argbjv+niwcAwocbnKOh4/vMRVv3r:z9bRiPCgNIAzNWhr8+3Bz+ArgPvGnTwR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/72dd6cebbc5ac0e9620bbe787f15b692987cde6a09d3ada3c17bc6cb48c93e9d.exe

Files

9cc2315d58203686c68c13889ed991b7.bin
.zip

Password: infected
72dd6cebbc5ac0e9620bbe787f15b692987cde6a09d3ada3c17bc6cb48c93e9d.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

Ztojwvu.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 748KB - Virtual size: 748KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ