4bdf9fb8b76b9c454210311a6d1ce6f5[.]bin | Triage

Submit
Reports

Overview

overview

8

Static

static

1

3558c780e2...f5.exe

windows7-x64

5

3558c780e2...f5.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

3558c780e2a71b5fa03e559d2b53be1c8ef00caedfe06adf6d3ab62e215f95f5.exe

Resource

win7-20230220-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

3558c780e2a71b5fa03e559d2b53be1c8ef00caedfe06adf6d3ab62e215f95f5.exe

Resource

win10v2004-20230220-en

evasion persistence

windows10-2004-x64

6 signatures

150 seconds

General

Target

4bdf9fb8b76b9c454210311a6d1ce6f5.bin
Size

615KB
MD5

c46b0d44a063bf2756883effd6d37551
SHA1

bad1760174d098e218c39858acf37fbea2fb3c01
SHA256

3b2ee58c93533d7603a9698c00facf3acb6ef4f9869972178cd1822bffe79a7e
SHA512

5d29a260d2b44277dc1d41e22e02d42ab7cbf6629454ccc65a37b1beca675df28ec1fc38b2941b0dfd532102f727854aa185549e4d0b397e611f13112a79b4c0
SSDEEP

12288:trOar+Cjqbm9Pl48d72UNg4KYZMnckUhr8qgM/M4anl1u0TF/bJb:JFrRmbGl48dBNQg4qgOaLBTF/N

Score

1^/10

Malware Config

Signatures

Files

4bdf9fb8b76b9c454210311a6d1ce6f5.bin
.zip

Password: infected
3558c780e2a71b5fa03e559d2b53be1c8ef00caedfe06adf6d3ab62e215f95f5.bin
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.p29
Size: - Virtual size: 206KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.v[b
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.C=c
Size: 348KB - Virtual size: 348KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 924KB - Virtual size: 923KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy