5[.]bin[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5.bin.exe
Size

388KB
MD5

3521e879e8068fc25d117365e11ff4f9
SHA1

73e8e90ee68d2d8558f293fab7c5120e2147024a
SHA256

c992bf37cf07477cd38a4e168f0be2784e2259c42ec59657ff501ff7c9e0e21e
SHA512

39ad83b49ef29f52ac0d063c7bc58662a855ecc3bf57afa25693473096d4d1102e90252709495130c7a2f33d0d87119a1caa9e26783a93315c20cae2fabbe8b3
SSDEEP

6144:pJEg17wK3Gve0zi8QwsV2crpxd00nFNRgU/kttg9:LEg17wK3GG0ziLrzvFngU/4to

Score

1^/10

Malware Config

Signatures

Files

5.bin.exe
.exe windows x86

c9a1ea6ee9933a54370224269d277665

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
FormatMessageA
CreateFileW
RaiseException
SetStdHandle
SetFilePointerEx
LCMapStringW
GetConsoleMode
GetConsoleCP
GetThreadLocale
GetStringTypeW
OutputDebugStringA
LoadLibraryExW
CreateThread
WaitForSingleObjectEx
OutputDebugStringW
InitializeCriticalSection
LoadLibraryExA
GetModuleHandleExA
SetCommConfig
SetCommTimeouts
CreateToolhelp32Snapshot
GetCommandLineW
GlobalAlloc
GetConsoleTitleA
CloseHandle
GetLastError
CreateFileMappingA
MapViewOfFile
lstrcatA
GetModuleHandleW
GetProcAddress
HeapAlloc
GetStdHandle
HeapQueryInformation
HeapSize
HeapReAlloc
HeapFree
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
GetLocalTime
FlushFileBuffers
WriteConsoleW
TlsFree
TlsSetValue
RtlUnwind
GetCommandLineA
HeapValidate
GetSystemInfo
IsProcessorFeaturePresent
IsDebuggerPresent
EncodePointer
DecodePointer
EnterCriticalSection
LeaveCriticalSection
GetModuleFileNameW
GetModuleHandleExW
VirtualQuery
SetLastError
GetCurrentThreadId
ExitProcess
MultiByteToWideChar
WideCharToMultiByte
GetProcessHeap
GetFileType
DeleteCriticalSection
GetStartupInfoW
GetModuleFileNameA
WriteFile
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetEnvironmentStringsW
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
GetEnvironmentVariableA

user32

ScrollWindow
LoadBitmapA
EnumWindows
CreateMenu
AppendMenuA
GetClipboardSequenceNumber
GetSystemMetrics
SendMessageA
GetMenu
IsWindow
GetDC
InvalidateRect
ReleaseDC
SetScrollInfo
GetScrollInfo
GetMenuItemInfoA
BeginPaint
EndPaint
DefWindowProcA
DrawTextA
GetDlgItem
SetWindowPos
AdjustWindowRect
SystemParametersInfoA
UpdateWindow
GetCursorPos
CreatePopupMenu

gdi32

CreateCompatibleBitmap
GetTextMetricsA
GetPixel
CombineRgn
GetCharacterPlacementW
SelectObject
Rectangle
BitBlt
TextOutA
CreateSolidBrush
FillRgn
DeleteObject
GetCurrentObject
GetPaletteEntries
CreateCompatibleDC
CreateRectRgn

advapi32

OpenProcessToken

shell32

CommandLineToArgvW
ShellExecuteA

ole32

CreateBindCtx

netapi32

NetWkstaUserGetInfo
NetApiBufferFree

version

GetFileVersionInfoW

iphlpapi

GetAdaptersAddresses
GetAdaptersInfo

shlwapi

StrFormatKBSizeW

sensapi

IsNetworkAlive

Sections

.text
Size: 144KB - Virtual size: 144KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text1
Size: 512B - Virtual size: 96B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_RDATA
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 166KB - Virtual size: 165KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c9a1ea6ee9933a54370224269d277665

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

netapi32

version

iphlpapi

shlwapi

sensapi

Sections

.text Size: 144KB - Virtual size: 144KB

.text1 Size: 512B - Virtual size: 96B

.rdata Size: 48KB - Virtual size: 48KB

.data Size: 14KB - Virtual size: 23KB

_RDATA Size: 1KB - Virtual size: 1KB

.rsrc Size: 166KB - Virtual size: 165KB

.reloc Size: 9KB - Virtual size: 9KB

.text
Size: 144KB - Virtual size: 144KB

.text1
Size: 512B - Virtual size: 96B

.rdata
Size: 48KB - Virtual size: 48KB

.data
Size: 14KB - Virtual size: 23KB

_RDATA
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 166KB - Virtual size: 165KB

.reloc
Size: 9KB - Virtual size: 9KB