5385333a8618dac516b8b33b0bbf11a1[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5385333a8618dac516b8b33b0bbf11a1.bin
Size

640KB
MD5

f0505480512572c677358037194bd66d
SHA1

ac7e3debef6a0dc222daaa03cda11134481bf487
SHA256

a5e7d66304e43f1ea62119d763a4ea996b04599299e13beba53537285468bd89
SHA512

8bd6bc713e6c0e131c538275e0bb5a603add7c16f79da5a21c25aab04ab103c4b2d4692900900c5baca23a5ca10535b5466ecca94f98364c4642190fc90113b3
SSDEEP

12288:yT95J0Zis6wNhjTR4qzrT/eekQHqlX8V1Xa9lcP3u6vgXX3V76+Fqet7pAbft:4n0ksXhjTR4iBkQHeXuXa9lKZvu3t6+k

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/6c06c665c435cf95787310f59e984006711d50bf091ae610cb4440abae1448c4.exe

Files

5385333a8618dac516b8b33b0bbf11a1.bin
.zip

Password: infected
6c06c665c435cf95787310f59e984006711d50bf091ae610cb4440abae1448c4.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 666KB - Virtual size: 666KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ