2d9dfdb275d38155cba293dc619430fa[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2d9dfdb275d38155cba293dc619430fa.bin
Size

647KB
MD5

1a9ebacf7dbca0c725ebaade1290b1dd
SHA1

c6ca9c2b8545e4d93c8e33c38843ac8d2d4ee7ab
SHA256

c48a744f2bccc27d8caba302b43d541ac03061804e22dcaede6eb76c934cea0b
SHA512

390ea2fe218dc8411c177ab9e8bad0f0d055d21f4d662550233002e0649f5a2f561ad0cdd81fe920691ef59221e4f754f566bb8f30534b6ae1ba9dae77d2eb26
SSDEEP

12288:E7ocIWFcRIU0fnkNWmMtEG42HiG4ME/aGZm1eOQJLcEYJmMtN:EVI3rNXMC7e4MEiGZmoLYJl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/9bf25ebe467e570fc91e2003b17061c765fcb54b6d505a7db43263981504fa5f.exe

Files

2d9dfdb275d38155cba293dc619430fa.bin
.zip

Password: infected
9bf25ebe467e570fc91e2003b17061c765fcb54b6d505a7db43263981504fa5f.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 681KB - Virtual size: 681KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ