feb4df5a58d420280ea673594cfba1bd[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

feb4df5a58d420280ea673594cfba1bd.bin
Size

688KB
MD5

7d7d334559315efc810501daaf75552c
SHA1

bbf3b3899c58daf422a35ae3c1aaa57034edea51
SHA256

22bc63141b62e22244df0fed7ebeafcae76fbf27b71cd079fb08ed2190eb0477
SHA512

516798b880fadce047ab43f66ecdbcac6e672af85430e6b2feac6cc31aa0fcc4593c2d07a1103db65289b475d553721c0f01fa0131bcb971528d488f5f233632
SSDEEP

12288:KEUAyOHBb5GNDXji3l5eaJda3jbTgFPGrArME9QDJb0g4fXkyHWv/y:zVH+5XWDdHmTwrV9MJSkyHQq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/bf2aea60e7a0e3272ff7b5499a05609c47e5aa966da15d319a4c206eef1bde8e.exe

Files

feb4df5a58d420280ea673594cfba1bd.bin
.zip

Password: infected
bf2aea60e7a0e3272ff7b5499a05609c47e5aa966da15d319a4c206eef1bde8e.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 737KB - Virtual size: 737KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ