490a2af01b265b6249f8e119bf100a28[.]bin | Triage

Submit
Reports

Overview

overview

Static

static

31ed280979...78.exe

windows7-x64

31ed280979...78.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

31ed2809791230a779f6a9071bebf2e321e013b933eec77208944cfd46764578.exe

Resource

win7-20221111-en

gcleaner discovery loader

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

31ed2809791230a779f6a9071bebf2e321e013b933eec77208944cfd46764578.exe

Resource

win10v2004-20220812-en

gcleaner discovery loader

windows10-2004-x64

11 signatures

150 seconds

General

Target

490a2af01b265b6249f8e119bf100a28.bin
Size

2.2MB
MD5

5a7e5f2e7ecf4a42d16a1fc42a876469
SHA1

15e11bccc1ad8c214d1b51f7ae0b4bfe4a2fe096
SHA256

d06f18c3a99d3214ad341e5ae3fe995d2d482335c7a4f7ea0022df7fc6650d52
SHA512

98a2d91f6ed2408d5a260e31094c1613d114767115cff4977e9bcccead2fc60759c96f23ecaac4d438a70636dd14247708d4e45e98a7ebedacf658c943fc36d4
SSDEEP

49152:UlBWxpXzLbILFJINDmuOMISlhImudSV8OWB/jqvGm8D4Tm4mU:UDCX/bYFJI9m7sOaGwTB

Score

N/A

Malware Config

Signatures

Files

490a2af01b265b6249f8e119bf100a28.bin
.zip

Password: infected
31ed2809791230a779f6a9071bebf2e321e013b933eec77208944cfd46764578.exe
.exe windows x86

Password: infected

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 37KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1024B - Virtual size: 588B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 90KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy