e064db65f591ebb637aa2ca532b7ec35[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e064db65f591ebb637aa2ca532b7ec35.bin
Size

23KB
MD5

af102c02f258069a6e6f2069775fd309
SHA1

985cb3a105f602a0962fc84f4209055ecd38faf6
SHA256

a22dab5353cd7a63aa69dbdb033aead73dca11753f2220a481fb10f2f40cd729
SHA512

e30a4ab44a7770069a2ecf7b40a356c2639c60c454784a2ea99744d1dd9288ee43bbef440c0491ac9d3c749a215fae8b54b9a9f8bf0dbe87b946735837e997d4
SSDEEP

384:nCV++wI2rLhtTmZPyiRnvM1sbzD0ti1h2uIsI/EOue8UgHPDjVTPM+p2cTCtVJU:J+r2rLhtSZjJU1sb8ti1AuIsI/EOue4n

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/ff4234e650d0ba4b296f099c3bb00995f64d43570da258906208e1e1681a45ad.exe

Files

e064db65f591ebb637aa2ca532b7ec35.bin
.zip

Password: infected
ff4234e650d0ba4b296f099c3bb00995f64d43570da258906208e1e1681a45ad.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\AntHoniO\AppData\Local\Temporary Projects\22\obj\Debug\22.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 108KB - Virtual size: 106KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 4KB - Virtual size: 123B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ