3856f324b225a80d55a2f7797eed28dc[.]bin | Triage

Sharing

General

Target

3856f324b225a80d55a2f7797eed28dc.bin
Size

906KB
MD5

d9ce36975f434e23eeaa87eb659f4ebd
SHA1

f13bc0b97e77a6d5624fdbd4e6a768e97deb45b7
SHA256

7ad854f5513e6504d2a523d01cf39873b76bc93d65df5f09e40f9a3676b14297
SHA512

a0d74a66b45a2394defcbafb2b7c45344631458f513907b6045b41ca62ef3b6c2f8d129ae8eb929c75c5c1d8956de2c95d92d0f7de5727f2b22d5ef6fe09f23b
SSDEEP

24576:d0yUVMoJRJzjAS3pBfLnuoalm5D1Q4IOaZa33/:duD/sS3pxD0m5Dy4vR33/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/cc3dce96f7d667d94627ba4a59e592f5c833f5d80d639e3024ff7835fc387c04.exe

Files

3856f324b225a80d55a2f7797eed28dc.bin
.zip

Password: infected
cc3dce96f7d667d94627ba4a59e592f5c833f5d80d639e3024ff7835fc387c04.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 916KB - Virtual size: 915KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ