5441daca0d28d6eda01b210bf0ea6f4d[.]bin | Triage

Submit
Reports

Overview

overview

Static

static

1

8fd252a966...c4.exe

windows7-x64

8fd252a966...c4.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

8fd252a96657e5cc2cf702778aa5e4b2385a3f0d10f342a41caa2ed335ca5fc4.exe

Resource

win7-20220812-en

gcleaner discovery loader

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

8fd252a96657e5cc2cf702778aa5e4b2385a3f0d10f342a41caa2ed335ca5fc4.exe

Resource

win10v2004-20221111-en

gcleaner discovery loader

windows10-2004-x64

11 signatures

150 seconds

General

Target

5441daca0d28d6eda01b210bf0ea6f4d.bin
Size

1.9MB
MD5

47ba4fd685978f899b0e3a968480db08
SHA1

dc057fc2b08f092d0b6add789c6c398b5f5ea018
SHA256

d9a64acee3b95a7f18dbe7e573d4c7f628b0c88550f50cec7bf4db2b2cef7905
SHA512

327ff3134a685f433425f4772b650ba348812b612e4661562ceb581445ac2fb6925575290b7c9bd6df452b4f72385496645546cf4dd67cb89840c84fc082ce23
SSDEEP

49152:BuBhKZv6zxXQdiIAwwDVfJvzIURDlLl5lk2s1X:BuxVAdiIAwwpJ7I2Llkx

Score

1^/10

Malware Config

Signatures

Files

5441daca0d28d6eda01b210bf0ea6f4d.bin
.zip

Password: infected
8fd252a96657e5cc2cf702778aa5e4b2385a3f0d10f342a41caa2ed335ca5fc4.exe
.exe windows x86

Password: infected

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 37KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1024B - Virtual size: 588B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 295KB - Virtual size: 296KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy