a544243f6002da4d5d9f632db7febc1d[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a544243f6002da4d5d9f632db7febc1d.bin
Size

613KB
MD5

04e2f92c6859521d3d76cdcdf3a9711e
SHA1

b9f657a9338ebf1cab166ff521e0c3bbc9133748
SHA256

6c3db5da883fb0de55cf8ec72037d551a7a2c9b5e788640d41c3f6874cd5cdc0
SHA512

027a36d00a96493dadf85d44bacaed449f0fb44ab9de338af9d2406c06aa264425454057fad8a9482d64002b8f620457d29017d85dfefef1015dbe38edcfa36e
SSDEEP

12288:trCGBZUsyFh4VIgeVnjQ/17jU6RmhC1bPW/CbDas1y+1Kg03:trCa+dsag+njQ/17jRRoqPVnas1y5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/943a21a3e37c9d1a350da6edd3487c05d2e77e960f55dd647928021e3bc57ce2.exe

Files

a544243f6002da4d5d9f632db7febc1d.bin
.zip

Password: infected
943a21a3e37c9d1a350da6edd3487c05d2e77e960f55dd647928021e3bc57ce2.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 725KB - Virtual size: 724KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ