b724752855a6406ad4925cb41112aecf[.]bin | Triage

Sharing

General

Target

b724752855a6406ad4925cb41112aecf.bin
Size

673KB
MD5

f702722e3c4404713cfd9142887fa33f
SHA1

b49acd0ad30895bcdee0cf30b8ca38adbcf9e6a7
SHA256

093232c9eb6ab3542e1981a221cc4e3d90c45c55a5557339531e8171b1c9e43b
SHA512

f93a3ada13f46745668e2a1c1c2f3471fc68b9946b0ff6af036a790fd0b2594e057383c4b5c996b09e069bb3693bee4298a048662be551e4c78c7d3af827ce25
SSDEEP

12288:71jQzQGIwHg1MSEYAD6aJwqDPcgLRWpbdIS/ArLTGZ07E8fW4EdvoPEa8:71j/UHQJEDxw3cUpbB/707Jk9oPEa8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
unpack001/7f7230e7228c5ddd4e0536f6401123cc6eb5f3a6b1fb05abdce2d664870b590b.exe

Files

b724752855a6406ad4925cb41112aecf.bin
.zip

Password: infected
7f7230e7228c5ddd4e0536f6401123cc6eb5f3a6b1fb05abdce2d664870b590b.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

TNQY.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 680KB - Virtual size: 678KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ