f51b1f97be7d198e266b158870609be7[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f51b1f97be7d198e266b158870609be7.bin
Size

640KB
MD5

6266ab2c2dcee957079e8ae03406229b
SHA1

e15ae4e8da05dabc35cc230af1a2e07a5e15e827
SHA256

63e21634e99f2749e0669a801604178f0e66973e017a711f27cdd30399a8bc1f
SHA512

dd0341426fc9f98d750a87cb1395b5e21ffecd88cd89178b48ad9e5d6bf8a282e098b9ef79bb73d441e8f1922b32142aa65944fa7c9c3da7c4c60f73b59e13be
SSDEEP

12288:gKamRBfTaGa2JcdtzO/7Fk1Uqu09jg8n4ekHNd9p0Zx+KZpI4cII7SUCln55iz1:wmRBfeGa9dtiCz9j3n4ekH/9pOxg4cJx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/923a51c8fc40e0e02a4ca807ed7cd5042f1e59e52abea20c44bf88f7f7b78d6e.exe

Files

f51b1f97be7d198e266b158870609be7.bin
.zip

Password: infected
923a51c8fc40e0e02a4ca807ed7cd5042f1e59e52abea20c44bf88f7f7b78d6e.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 658KB - Virtual size: 658KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ