77f6b4b9986921aadf7e0807b7271d19[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

77f6b4b9986921aadf7e0807b7271d19.bin
Size

1.1MB
MD5

c7c6f6821d34148cd1a58a9a09f8495a
SHA1

3f9d311d496548a0c0cb4e9f15e9677642a86617
SHA256

5f14695edb3e237746175e0436217806e968d1d1dd3f27f1f96b807b02fa4554
SHA512

9f4183217094b630efbf7b5d632aa8abb51f3dd4cf4623a8e2a7a0fd9ac67e06544d17e6fa9472f3b1f803f89b5f0416f5f8b366fcf43cdfe400400673ca583d
SSDEEP

24576:dZ1fosGeQwJtI60MEYaMXsomN7ixl3QceJnoXdvT5Zow+3uqigNg/oV5la03:SnwAAOMXrmNGxl3te8dvTHq9g/q5lJ3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/90e1147f0f9be45cb41d6efb9c187ed376fc464f0d398c20a735a6f8a88ee1cd.exe

Files

77f6b4b9986921aadf7e0807b7271d19.bin
.zip

Password: infected
90e1147f0f9be45cb41d6efb9c187ed376fc464f0d398c20a735a6f8a88ee1cd.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 165KB - Virtual size: 164KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ