1f80a36a258b4a461cd69d76478bb9b7[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1f80a36a258b4a461cd69d76478bb9b7.bin
Size

591KB
MD5

329c2e2276b02cf4cb6af7e78cf8dd8a
SHA1

ce96b4f905a54b60ba35c6a20a9a9b7bfa67a18f
SHA256

b8bc458edfed5ec2565b1019607945973fa8af1db0d861b776595494655ac87c
SHA512

c7d63c8b8613341f0854e5e6d2634655e2f56f216c21e05d163ed8672ac9e3db955cf8daea07ed9417758e85e983c0c37b901ccec47ac35fa58763c65db4ad60
SSDEEP

12288:hNawJF7GQWGW2EGBJeU1NEFsrKaX2e9T6sDcoMcls9m33IBl:JHKRU7EF4KaX2e9T6szMcls9m3Y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/421ba8ed6cc368d7f2caefad695968affcc3de3b0c6c066bb08ad08b8f9d57eb.exe

Files

1f80a36a258b4a461cd69d76478bb9b7.bin
.zip

Password: infected
421ba8ed6cc368d7f2caefad695968affcc3de3b0c6c066bb08ad08b8f9d57eb.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 593KB - Virtual size: 593KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ