5e0f540fbed81efe0941f8949498c92c[.]bin | Triage

Sharing

General

Target

5e0f540fbed81efe0941f8949498c92c.bin
Size

908KB
MD5

69b62660accc62adfa99c30b7d507452
SHA1

88aed774a382cc06295b5f63191db69272de7a6f
SHA256

d78348285dea06898f3552eb0e0bc2945add7c221946ba9802b0ea194dfc21cd
SHA512

9b349b38f78ddd1c58faeeca1189bcd552faf4ec2ea4b3226ac88906116cce2fa317d55dcb665e47ebc13b923c24a8cc18e861e50917a4559ef0d017d35fd8d0
SSDEEP

24576:l5YiuBRBwOD9Hz5IM93/jzXXBH0dj42UKCv2vBR:ciuVP1D/jNEUKi+R

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/b3a40331524394846d2782f1e52e1410ce1681283f8c715373bab73c84fa30ec.exe

Files

5e0f540fbed81efe0941f8949498c92c.bin
.zip

Password: infected
b3a40331524394846d2782f1e52e1410ce1681283f8c715373bab73c84fa30ec.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

Oepr.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 915KB - Virtual size: 915KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ