4937a5394819d8114e0b91deade4ef52[.]bin | Triage

Sharing

General

Target

4937a5394819d8114e0b91deade4ef52.bin
Size

59KB
MD5

09cf934895523900df6352fb59f9cc9f
SHA1

bf3d7a4ff2b194c7e4706d3960c62632473f030d
SHA256

285b1c29c7fbf7645bc85ab3782363bb5063122cba5c3b7a7962fd6199df9b89
SHA512

4f8096830c0435dd875db2ecfe27e7db4251282568088055f5cfb7c313b274a227ad537639ea0338c92a2224c47f57092822337e47e09ac917ddc335aa14bb5d
SSDEEP

1536:3LzBEfnRgBHTQwPp6EV3Feldil8/REzoBV6zM6DYv:3JY2UwRLVIQO/RE0+xD2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/bdba87b50a8922290009c64e922e7f02e7543d22ca8730960c8cb6fa02b02441.exe

Files

4937a5394819d8114e0b91deade4ef52.bin
.zip

Password: infected
bdba87b50a8922290009c64e922e7f02e7543d22ca8730960c8cb6fa02b02441.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 94KB - Virtual size: 93KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 840B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.l2
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ