5289d05b6525f474898a5541ff32adfd[.]bin | Triage

Sharing

General

Target

5289d05b6525f474898a5541ff32adfd.bin
Size

3.0MB
MD5

0303c11a154cf631ebdcc9f1361eab2d
SHA1

883892b74c7c29c2292ae5a4020011ed7328f67d
SHA256

cc6cdaaa5ea8946e377fe2dbaa139c57d2087473744a42a9978ccc7d0dc31a35
SHA512

50dddcaebd4c9a4a07177849eaeba0998a766a254d241ad00eeded259fab00a4c5b8c242a0b46300ed074bce655794c971acefd2fe40f4e00c151f5394f51aa0
SSDEEP

49152:s9yNDxLIlDkcCrmndWrM+skIfn50WzzvBD2+E80zIyg3zdHni9GUr+GkV:s9wDxM6cWmdHtkWvzduwyodHi9GPGkV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/30d27ff95354ee56096e7f06f5eb0f64d895c996f6ff8e45c781f1c14b542373.dll

Files

5289d05b6525f474898a5541ff32adfd.bin
.zip

Password: infected
30d27ff95354ee56096e7f06f5eb0f64d895c996f6ff8e45c781f1c14b542373.dll
.dll windows:4 windows x86 arch:x86

Password: infected

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mscoree

_CorDllMain

Sections

.text
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 876B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ