binary2-cleaned_evasion_check_triage_compiled[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

binary2-cleaned_evasion_check_triage_compiled.zip
Size

3.2MB
MD5

723333fca477ad7402c4b9155982a22b
SHA1

a361ae09eecc1d097002f9e96f1510282cb2971e
SHA256

f491496693f2155ec8bbf772de455be10990db564bc364b8417edc8e7cb7a713
SHA512

8c78d3c44b8b4281fd202bbc2cc13f2b8677bc5d7edbaa2e853de45fd142cb7caff1d8c96709354e74b664135cde76dc905b8b43c97a2eb404240e9a3746d63f
SSDEEP

98304:YY7ZRbn3iJJTg3hQqx69FFZwlzN7FGAJ9Ik6S:YYFVxhQ0YFZizGAJek6S

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/binary2-cleaned_evasion_check_triage_compiled.exe

Files

binary2-cleaned_evasion_check_triage_compiled.zip
.zip

Password: infected
binary2-cleaned_evasion_check_triage_compiled.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 3.3MB - Virtual size: 3.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ