4e6c08a0a42eacf32c3cbcd25edd27ad[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4e6c08a0a42eacf32c3cbcd25edd27ad.bin
Size

97KB
MD5

97e8da831858e4c60b1c0825350a2d3e
SHA1

01fe17753d38b80da9722a2bcd6fd733affa2160
SHA256

4ac98f6c9e2d36fa71d8fed2e67d249ef69b8b6ed75a5c034715066a97dff98b
SHA512

d25dec4b6e6c2e213736c603b70c88b834fb47d606a4d57e4a07c866f129bcaf404f3fcf9ec5bea8b969793c637256be768e2d0ad0832dc10b456ae1282bee16
SSDEEP

3072:lUjXMZ4g3GH4r3VoQgj5ErCe6vzpyl835gZG77xu88C:lbug2H0OeCecp5xs8z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/733b661ec13286e0675507c443e8c5508366cdab4f0ff91e11bc13ebea5561fd.exe

Files

4e6c08a0a42eacf32c3cbcd25edd27ad.bin
.zip

Password: infected
733b661ec13286e0675507c443e8c5508366cdab4f0ff91e11bc13ebea5561fd.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 180KB - Virtual size: 180KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ