fake bitcoin sender 5[.]2[.]bin[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fake bitcoin sender 5.2.bin.zip
Size

8.1MB
MD5

b71ad4cbcd2b5e4293d162649c96c17b
SHA1

f0e6d85fbaed5e2900622927ada5b5bbfd6ac06e
SHA256

ee978d040f1e78c810de951f76b06ede5eba9d628febe332437a7994b23f06cc
SHA512

eef31124b47ef80f5f09d96d5ac516aa00b6642e38b848bec43ba08e4a36070994dc0f240444cdfce33f6e67121cf35c78dfb38c3d3347cb7ff84323e8164684
SSDEEP

196608:sihRG3DPwHfn7BQqn38PI9RJHY4F9gsuI+JB6Oijswu58yV+ov:sih8TP4TBz38PI9RJ447gsux6Tg5yy7

Score

N/A

Malware Config

Signatures

Files

fake bitcoin sender 5.2.bin.zip
.zip

Password: infected
fake bitcoin sender 5.2.bin
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 8.2MB - Virtual size: 8.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 203B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 51KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ