8a3d6fb06fb021f5fb623c60ef2f76b4[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8a3d6fb06fb021f5fb623c60ef2f76b4.bin
Size

13KB
MD5

f370b5865d51554150fd289d417e34f7
SHA1

dc902b6205b4bdefb40ea33dd2ef31a259f322e7
SHA256

4a8e17d75c309f56c71165ff8cd446d59471167c34d00b00d305493defb85a99
SHA512

cf28e593a09ed495419a06bdc4eb34cafd129a54d6768a4af5ff5e20f364e06f40d2ee7d99565e0c59516fdb0f1ea7b5313574be0f83c1c5693863ced82fab33
SSDEEP

384:MMFJfFyArKFNzIJixjQUsFh8LfKxlQqLJeiy1:1FJNRrOz6itQvhSixrLs9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/f1c12d3f1800a312beaa23f9d294a8a9bf707b2cce75b907e23347c11d5c8609.exe

Files

8a3d6fb06fb021f5fb623c60ef2f76b4.bin
.zip

Password: infected
f1c12d3f1800a312beaa23f9d294a8a9bf707b2cce75b907e23347c11d5c8609.exe
.exe windows:4 windows x86 arch:x86

Password: infected

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 3.1MB - Virtual size: 3.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ