4a699c45efa52f13210361413ebd9358[.]bin | Triage

Sharing

General

Target

4a699c45efa52f13210361413ebd9358.bin
Size

543KB
MD5

d4b431b8148c0d14194f7c037542532e
SHA1

1c53e7b59f826072111d24660cf80efc4040f6c5
SHA256

cdb403209a2ab4bd3679c2f546e92996783ce204733f89d25fa36c5e0acd7a81
SHA512

52543dadf5d08037f06ee23276878457537d3995e443abf69e0be3ccf7fce0df7debdcb299e7fb5dce00fcccd86f939bfc0a1d8a93d6cd2b2bcdebe386ff2f3f
SSDEEP

12288:bRdfxcRuuzcFYim/RXlLSnFURIMFuXggYRRjAgt:dc06F/RXh3+MGggGh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/078b3704bde85e8ad84e4c21ca910f5d5367843bbecc2a384acc3fd89cd3553c.exe

Files

4a699c45efa52f13210361413ebd9358.bin
.zip

Password: infected
078b3704bde85e8ad84e4c21ca910f5d5367843bbecc2a384acc3fd89cd3553c.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

bBvN.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 557KB - Virtual size: 556KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ