f50c954d4bf97335f18c10d75b08939b[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f50c954d4bf97335f18c10d75b08939b.bin
Size

28KB
MD5

76cd219aaa14a40af83f420b817e1643
SHA1

fd94dab66fb6eac162fc47a8c9336861afd70c5e
SHA256

e6df77c1a7bad8abac7e03ab7c2e3ccd2c743622df7b1a5e703bda648726cd5b
SHA512

6b6346294df34d4c61421f84c7c684bc0dece254258f7bec8213ad667bed5cd8ec6fcca08d25793a87e2b4d7e12c77581c6556ccc2bf19e90c0761c216ce51bc
SSDEEP

768:pll8dpzq0w+pyTmxcWglfQaGtogaEOpq+qDUWuaGBQ28Bk18:vl87DYT9pY7oQGkE+vc8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/542b342741087bb6c40a67f690c328925893b34b2aef1acc8dc82aa63579b293.exe

Files

f50c954d4bf97335f18c10d75b08939b.bin
.zip

Password: infected
542b342741087bb6c40a67f690c328925893b34b2aef1acc8dc82aa63579b293.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 69KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ