4a9440baa61be8363a372b0bbc5933ad[.]bin | Triage

Sharing

General

Target

4a9440baa61be8363a372b0bbc5933ad.bin
Size

911KB
MD5

5b053058a37d906faf231fefb46c2024
SHA1

ca0580811287ea1c9752c3e8277afd2cc9b4539c
SHA256

184308ed956dd869a6eb03abf2250c59ae4fa063a1633368abbb270cdc6a3138
SHA512

590bc602110969b01b4bca142d4491f1827d0f223e09e47bf2e1c5d69022372a2397678bf45ad344f4ed3f87a97c37d934aba91738cd49d657cbd683ffe7bae5
SSDEEP

24576:7W3EdmGfZgTalFWgkeYruTqRTSyBXAk5ESQqKZd3DncNz:7qEUMBWZeYymRFHCqKyz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/51c0bcbc40451c10e3b56df10853156378e8dbfb32ee63ea936737d42818822c.exe

Files

4a9440baa61be8363a372b0bbc5933ad.bin
.zip

Password: infected
51c0bcbc40451c10e3b56df10853156378e8dbfb32ee63ea936737d42818822c.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 953KB - Virtual size: 952KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ