9399f672f1d34d17a26a1a6336cfdf6a[.]bin | Triage

Sharing

General

Target

9399f672f1d34d17a26a1a6336cfdf6a.bin
Size

21KB
MD5

82b1c24b87b964f93fd712cdcf3b495c
SHA1

2103c5b1e81c5ba89024f30e3cd92c88bb1c8803
SHA256

d0a2d1644a6efdee12e944db63ae5466a37b82f70e0df121a1e3024ccbcc066b
SHA512

232a073ae067254e52d7a667cbd3032476192af4e9d07881207fdb0ee6ca97fac6a9dce46e98466ea0fbc671b1334c2e3446cc9cb4abb8f023fcb7fc1be451a8
SSDEEP

384:S1pCh85vDkLmwTDaa3W4CRnUsN4lhr6fQYPiAL/+QPjIk9xMvTiya0OTk16Z:DhAILhDa5VejfmQiiASniSTiF7oY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/31379f69c7607eb6dbbd2971652840fe8264f1a1dc00f08a564908efead38689.exe

Files

9399f672f1d34d17a26a1a6336cfdf6a.bin
.zip

Password: infected
31379f69c7607eb6dbbd2971652840fe8264f1a1dc00f08a564908efead38689.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 43KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ