1660ad56d483caa69ccb56251c6f89bc[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1660ad56d483caa69ccb56251c6f89bc.bin
Size

52KB
MD5

b4a81e160e9aa666a093faf9acef5fdc
SHA1

57872ccff3dffac9dd186ca40705cb0478138bf0
SHA256

f0dbf48f3517e176129c851cd172c12fc17f1c590404ae0efa2bf5ed8f7bf323
SHA512

8d9d38e8065049a7cf8fea9a01df9eae40583d260eeb4d4a53a226ee7d878501e1503bb88d92aa39fd71baff774b0d3a79a74d63057d4ec0edef0263bd2009b5
SSDEEP

768:M6wQLLnfhKBY2FvdfL/4GK8OzXjbfNQqNJLaxwnOFBlAMluise9cePpOrPnpDPVz:3LhKaOlfL7K8KbfaqNdOF00uXxBXD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/f44933fa819aaf68b95ddd712bcb7e069ec952cd151862c1d3313dce52203c6e.exe

Files

1660ad56d483caa69ccb56251c6f89bc.bin
.zip

Password: infected
f44933fa819aaf68b95ddd712bcb7e069ec952cd151862c1d3313dce52203c6e.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 68KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 664B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ