6cc0abc5f4e343708dc4ad0073784da3[.]bin | Triage

Sharing

General

Target

6cc0abc5f4e343708dc4ad0073784da3.bin
Size

273KB
MD5

99b80aece69f53fd6e14d9075bd53a5d
SHA1

1a366becbc7c05105959975bb49a2cd5121120fa
SHA256

69a6553ff3b148b34d0e8da752de47afd8bdf00ccb5be6d19bb87ec83c541257
SHA512

3f25be90f4049377d1036dd00149a4912be50f4e18391874b24fa2d1144d64ac9605d03b5a431342149465e435bb9f087fb67f99df3aebb537ed9926e47ecdae
SSDEEP

6144:6N9K1Ex89VxFpC7CXJBAffP13p8+f+jga:6No1v9VtCGXJmfP13pnuga

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/c049ffcacd139b734c807013fefa36e6730077930d3736f342aaddc3fe144497.exe

Files

6cc0abc5f4e343708dc4ad0073784da3.bin
.zip

Password: infected
c049ffcacd139b734c807013fefa36e6730077930d3736f342aaddc3fe144497.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 291KB - Virtual size: 291KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ