65bb1f52e6c0c06fde3f80db0d28775b[.]bin | Triage

Sharing

General

Target

65bb1f52e6c0c06fde3f80db0d28775b.bin
Size

618KB
MD5

538ea474296bb3ea120d07d9cb5dd2a7
SHA1

4fc36769a6304b58e95f57e518a73912e3f8daf2
SHA256

2dc4db7451d162c56725a4a6a2a7465e28040e333d9d412ddccc878c2ce71c5c
SHA512

e1ff06d6e5e8bbc0701ad89c59c5842cc45e5bee97c582c24f75a5890c9f595ba6f5ec630413ca66a1c651d131720d7d6c7276b7422ae0870c04652eec26206f
SSDEEP

12288:J6E3M0CIry0Zyf8pUc6vSn0xdgVEJyRZKt8NtoL9OVL21:s0XrckO+n0RsRZKMOQRi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/de64c0a6d7c265a6f917c40454d8f4fad3208d796c8f4616fd271a4882a82843.exe

Files

65bb1f52e6c0c06fde3f80db0d28775b.bin
.zip

Password: infected
de64c0a6d7c265a6f917c40454d8f4fad3208d796c8f4616fd271a4882a82843.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

lnte.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 625KB - Virtual size: 624KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ