Cosmic Binder[.]exe | Triage

Sharing

General

Target

Cosmic Binder.exe
Size

6.6MB
MD5

0ad7298482f7528e1eb360b7110f05bd
SHA1

a2a40d27d7f01d55878c5ee0450aebaf656ce3d0
SHA256

482212ad374ebd572a44bb22e5e16a19843a281f0579e000c618f150bf1d20e8
SHA512

2995396bc27d50e92ef44a23a32cb954022b328f4c5137f7f1cc54ad141f6fd3a99e7fbbd82a38876cb14bb9bd17962bb79d8346ba49177dd36b4233bdc4e215
SSDEEP

196608:fKAxRJ675rL0y13he2qDbTbu/QjU5n2YPozziRR4pEXfTEok+lx8OH2qsmvy74Pg:L70h33he3Db81ozziRR4pEXfTEok+lxy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Cosmic Binder.exe

Files

Cosmic Binder.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 6.5MB - Virtual size: 6.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 127KB - Virtual size: 126KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ