aa44458fd4d28644f8b83943b715dcd6[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

aa44458fd4d28644f8b83943b715dcd6.bin
Size

742KB
MD5

4145a5d5b9871bb7480ac4650b963730
SHA1

273a5b594b4260e20a253a3f5bf6ea0e874b27c5
SHA256

d28f85d2e1fe0615bdbd4f96eac504e5a7f6ee383c4ab643003b78f9eaa51f03
SHA512

0391c2adc3bf4948553fac2d50e1598b86658df31b06dabb21e8da20d00e0eae1b565f4e39449de646b7a14a2e436591c0fc4e17f6251d6ec7568facdb4fa1d9
SSDEEP

12288:87oqMZ5nEAnJ0tcj9PFjvItDV3/87Lyq3Nf3EkvF0ktZi8+KXXw2VX0BeYxT5Z:8oBeKVxPBvwN87r7hoEXj49j

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/9d104a1c57250458263ee33927332afc8f052457ba1ac4a7318bcafd148e68fb.exe

Files

aa44458fd4d28644f8b83943b715dcd6.bin
.zip

Password: infected
9d104a1c57250458263ee33927332afc8f052457ba1ac4a7318bcafd148e68fb.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 885KB - Virtual size: 884KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 892B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ