7b6a358d5eee6bd500984670ac90640b[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7b6a358d5eee6bd500984670ac90640b.bin
Size

698KB
MD5

1eb758fcbf1e43511aa7e536e38a3706
SHA1

4180540ad04548d1b80519c524c948b029d396fc
SHA256

24242d9bf589a6e8e56e9f1ccc8a337d21ce8c2d56ee67cdc1af7f6ddbbb9a1d
SHA512

2ce216d304fd4ac904a17fe6a5793d64be98f089a4f182814527d72fd9b28186845dda5be0a40102886df2e110bd59f8ee76cfef657899686dee6524393960b0
SSDEEP

12288:3YekKry0i78gW1iO22l/cNcmIR0ZBgnQfRuReqb3tThDQCXDazkR5n:IJky0+8oK//mBjVRukqLttD0oR5n

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/dc87604f1d5dc29d3aab245b6384d1886819e53b48118bbcf8df9fdb1b58dcaa.exe

Files

7b6a358d5eee6bd500984670ac90640b.bin
.zip

Password: infected
dc87604f1d5dc29d3aab245b6384d1886819e53b48118bbcf8df9fdb1b58dcaa.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 794KB - Virtual size: 794KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ