bd745fd12f4298c0faf6d3cb1058bb30[.]bin | Triage

Sharing

General

Target

bd745fd12f4298c0faf6d3cb1058bb30.bin
Size

701KB
MD5

92da50e5a6001a83d09a083f18219dbc
SHA1

dffa97b61ce02d11e50108a85a1dd369c8e36c04
SHA256

eccb4346b998f7fb11ec65caf4dcbc910cbe6b0c51b2904b26d3d0c7ae5b8542
SHA512

67267a7c2826e87115d79da623866c720e491ceeb8fd4eb25dc4a91739dd91f453342bbf9f71744b0611216573f337d8dae33b5fb6f556e995e18bf00a158fac
SSDEEP

12288:WmympQDu/Sx06A40ry4s9CrU3ImOOmtPPW0QGB8MT7I5yDX/cZd7XuIuUniKY511:NymW2v5HnKinWyB88I5yDvcZFxY5vW4V

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/5a738bc13f111911358ff5d0dabf9660897162c9d3493c0924129bac038eb793.dll

Files

bd745fd12f4298c0faf6d3cb1058bb30.bin
.zip

Password: infected
5a738bc13f111911358ff5d0dabf9660897162c9d3493c0924129bac038eb793.dll
.dll windows:4 windows x86 arch:x86

Password: infected

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

mscoree

_CorDllMain

Sections

.text
Size: 4.7MB - Virtual size: 4.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 832B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ