c97cdcf0ba50cdcd66d96aaf52405c23[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c97cdcf0ba50cdcd66d96aaf52405c23.bin
Size

5KB
MD5

26b9d6077c644903b2a1f6fb1be1d2df
SHA1

89ff439efa3dc5ca5b20f62acc1aa82a2f79a816
SHA256

92b3fa8871c8f6e9b2b72a342e052df0788d906a1ce1e0c5da12f6c7f25d8841
SHA512

f2e20f4ab8f9cb382f4ac0417ecd86df81857228f4dfbc6217bb4ac9ee38803d9de2df992e51b06566a01f4d33aad6597e09a39e0aa7cf05c797d53d1b936954
SSDEEP

96:/y/y5xgqJ1jGCw0GR9hCIHng2Ep8OuyLMQEQBJEwxp/DuBaFQiyBLy/Ezy:a/2TDDwh/hCUn3EVFLtjBJNPvTOLyE2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/80cb3dd77ad46e8443f76ed5eaf3620cdc5b09faab2e987e53dab4631e8a6883.exe

Files

c97cdcf0ba50cdcd66d96aaf52405c23.bin
.zip

Password: infected
80cb3dd77ad46e8443f76ed5eaf3620cdc5b09faab2e987e53dab4631e8a6883.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ