tmp[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

tmp.bin
Size

700KB
MD5

a91274d677971f5bc029bf8fe120ffb7
SHA1

906f927a5cfeae13c4f10b5d65c69cd32dfba5bc
SHA256

a76f399107b51b66faa8b9720d91eead5f3f19a9dc0affecbd7951549813fff9
SHA512

4901f5dac8a1474bfc82e7184b0f5fd5c7b5d313bb51a3f6507715e543771b3c3674915a792adfa58756d6abd819441c075c76a640261ed83e7ca82227f62964
SSDEEP

12288:y767Ef8vH82HunA0LjBS7C1ivBO0dCAWu2HoBble/3Pw/M6H19ua:yac2HuDV1w3woB0/3PBuu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
tmp.bin

Files

tmp.bin
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 695KB - Virtual size: 694KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ