2e1fea17aeea8852800f17ead782ca53[.]bin | Triage

Sharing

General

Target

2e1fea17aeea8852800f17ead782ca53.bin
Size

734KB
MD5

4c422ce3bfda85fbe6441a7ff8c9740b
SHA1

8835804dc332acbda51103744646ca94b5dfd031
SHA256

231ceda3d6d3dd2e220f93ef95506e9bba4bd7162818c8084fe48dcb21b094ac
SHA512

b340e691a5fa783a205d8cfe5409f56db1288f213049656efea52b0f3bb59594514a490feb615c65d98256b98c57d62487606bb13f5c0e3af42b1dcabb7ac47c
SSDEEP

12288:188vlFvVTnNfDIKlVYdgB8WGs8wONbys8D+aXzDP1e//SOscygF2p6FNI:1FvjVnN8KlVMIGsBlJXQ/rfssI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/d2f23dc9b7b97472f7996e14c836b6571e23c79ee585d6d4c8f13ef7ae101d6e.exe

Files

2e1fea17aeea8852800f17ead782ca53.bin
.zip

Password: infected
d2f23dc9b7b97472f7996e14c836b6571e23c79ee585d6d4c8f13ef7ae101d6e.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 939KB - Virtual size: 938KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ