404cf2f78c8c7b2e4a09830bebe5ae5b[.]bin | Triage

Sharing

General

Target

404cf2f78c8c7b2e4a09830bebe5ae5b.bin
Size

737KB
MD5

3d36621caf3544952e697f9a4415f409
SHA1

e346eb749c8e9450ad4000e03bf45a54e5133463
SHA256

2c1a7c718f0d127c283e1c48695921967210fc2be44701935ebdb0731278fade
SHA512

0b1e21a39fa91dcfea2aac1a5b0ef07b2868bb44c58f3b41f828f358ab88f1ba535f8057fe3902c34cd1929648f14195d68d0714b628e70fa20c797a54cbc8aa
SSDEEP

12288:8h7kXXy/p8mTIwpSNbAyMHuXFYfnL5tWh31Jf9e8a8/OQ1pWqDk1Zp/agjGQbtTu:IkFmEwYbAyMHuXifdtWLHe8a8PN6v7tu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/9a405f12de1dc4e10c3515e36540aeaaabbceb7d3b4857e3d6ecba4c06cc4e8d.exe

Files

404cf2f78c8c7b2e4a09830bebe5ae5b.bin
.zip

Password: infected
9a405f12de1dc4e10c3515e36540aeaaabbceb7d3b4857e3d6ecba4c06cc4e8d.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

yxxc.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 872KB - Virtual size: 871KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ