4363463463464363463463463[.]bin[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4363463463464363463463463.bin.zip
Size

4KB
MD5

20c49ea6d26edf6859b6dd76218cc1c2
SHA1

3030dd324e8ac97eef2d7be3c97644a8ed010fb6
SHA256

2c3c059803536f9bc6eb55895344f225dcb21ee0b46303750f5cad58f68fa509
SHA512

b0170897f297023afd2d134234f102f42a0c380a4024adac0c194be764895faf2db7b93d81a79b43315a526fb988ce3b5bf4504f348d61a7d8a3acac34ffa418
SSDEEP

96:cztlK1X/jjasaJfE9WWG3M4Cmk3ndmj02+Kd81siiyQVejr8JIncgf+:czUX6seE9WWGn+3nEj5phycg2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/4363463463464363463463463.bin

Files

4363463463464363463463463.bin.zip
.zip

Password: infected
4363463463464363463463463.bin
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ