General

Malware Config

Signatures

Files

• 718c1a4f0cdacf94d4d6ad97e06a459f.bin

  .zip

  Password: infected

• 7afbf498fc56475c7960c67595374fc5d84235b381ac1193bd4ebefa3ed0e033.exe

  .exe windows x86

  Password: infected

  
  

  Headers

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LINE_NUMS_STRIPPED

  IMAGE_FILE_LOCAL_SYMS_STRIPPED

  IMAGE_FILE_32BIT_MACHINE

  Exports

  Exports

  q��d5^Q�i�eCb�1����@8����N�c�U ��-G�;���LY`�{p�b�IjY҈�S)��/��Puz�dra�
  Ax-M�2�٨����ɽ�A>�q�1KڰJⓟ@�*�=������&�e ��熢N̒Tي��$r���Ԍ�d����>�u����v�j�B@ca}��/=��V�G�D�0�6�)L40�Q_�P���((Bt��բ�1�@2��h�����݅�2�d��e�b�J.׼�}��E)�y�H�rn_����@S9fh��4�$1.K��m�'S�1������UW�T{),���8�G )�(�1�Dh��O�N���\��a�Yɥ�Y�n���ܹ����ӱ�f��F������d������M�<k,^��1y�.F-z�����+��j�B� ���Z`nZ�*��5�^�ǜ���xv����!�/�m��F"&���������:jc��$k#r'�7�81�=ݮ����n ����zcY#��ջCX)w�! $/�0���� �*j�P�
  ��9%C���H��y�aYk��vXnKqׂY�0ܙi
  ��@��!3J��ߪoB� c#�W�4
  ^@D���x���Ip� �M��+��E��A1�Q�3=w�d�a��l�jᾀ ��N�<~pPW�A@�x�uX�^��P���Yrߔ���Ў��c��-�ё&��(�Ch�_����B�ُ� x�0��D��x �h�f�ik���Fu�Xz�6Η��=�i�k^׃�P��
  ndS�)�K���`~�5
  ��Bg5�ʘ�5���Nb^=��/��Aº�U$�1��!ɥ�j����M����zf��V� [U�GDA���p^)��y�f��'~H�������|��EN��|@��%���R�PՖ1E�r�伶[����������̤q�B��[�ʚN�n,<�D��l����37��Sp�b��Gqڧ,���1�5p/ێ��F�}Jx�%[��O�8�K:�
  3n�2{�AA��t ��E��;>�.�*�mo��R�����:������a���{��2��*���+��B. �r�)����~�o���cW��T� �b��� �ۭ>i��8� )>@���{���L���}�;�p�5�$m��%q�3pe.�?�)4�mV�u�&Y���k�<���' ��i�>�pIn��[ýV��'�]\I�S�^�i�"X�C�G�ˎ<�8< �1?O�[]<v���&0�O��g���x�\j��yJ��r�9��̍X0y&�<}�GGy���sG�P��Ѳh��s���3�C����0�J����\��
  ��Ew���p>�la ��.�;uL� I=f���d �MMޟT����u�!�F jJx6=��_�yT�H.c�(�C�S�W'�v�@�?t��u�I���؋�-�W�q9��j��y��f8Z(2{)M�MLp��lF�gMg��dMW��~%dz�9�:L1o�÷"�B�;��G�:C�EY����i��I�=.���f�|H<���z�)z���w��J��Pr�ath�J�ޑ�<�o.fվ��x�HF�l|����9Y��3��0e]a�AC~�j6)�]�x��$�A���-�l���1o�����2����ǮzPl>��L����V�����Ɨv��H��,�,�i�B�n�f�F��1*s��8;��B��b��|O�D�Ѕ����a5 ��B�G�(%�qK9ށ�+���Y���/z�JՑ�@�f^'��m�!|��]g&�h� �29��7��LR>�Np�4�4����m���)J�6C����DÊ*�Ց�#WޯpL�*ʂ�daXW����xVcZm�D9c\�=�9F��-xj�aр���4��s�0�U�8���*y���g�[{/PlWW���3Z�d��x���_�gg�I1e E-.1����F������R/���zW���M�U���-�,�}ߓzS�^m��5�+
  ���]2�˕e;[�q�yӣAv���-A��S�(�� P ��.�ɴН���٬�R�=��%�Btn~�4�*���`�����ȝ�����g������!������K�F �"��+������n}�>;�7We������x�_$S���3�f�3cb�0D�Q���
  �Z�k���Ж�Wĥ4�̤=<p�k���;��1^��Di#9-C��W����a6i���V�4�� �����=�М�HIt�e���!�Š��@��ofp���d�2(�=X�ص�}N�dYo��w{���WpF�B�l������퉽��)�x��O�(Y-�=囂��Ԭw�$�]�#���r� �So��{�%����#Bxu�|���oA���/��j��1��ȇ9��%��|8Tz���c^�������dI�)h�t\������F��]����E�{�����Ze���<*�ê�M�fy����+=̿�����1�cMO�%\8^+ ����Txqd9��\LH]e��lJ'��-������^U�,��aP|�~d�GUz���V�����X�����^���Pr{u�hF���X�I���E����%a5�i
  �yY�N�G/, �o �|��&�K����x"Sw���:W���m�Z�9��]ey6�w~��I�|������sb5aV��[P�DE2w����1!As����U�Č���*��HAtY���4n`�Νq^���A�v���ĺ�ʹ����]QiLaO3Z)���`$#�K���D�+|Ą�/�������e���Ka{n ������c����6����94ަJm������`�}�8��h�=9Z�=�6:s)�@
  ֭Fu�*K�Wj�b�� |�+��#¾�ۛ� &^���)�m��k��k{������݌h
  �����N9���)
  �6��� �1�����r�.�VE��� ~`knݝE���Gt"GGfGe�.�@ܷA(j&���q�p����A��C*�h_֢�B��_ZJr�MAS"v%�\�}ă��8<�t,&�b�B���t$�3�@4�I�遨�`����ޞ��<c�i�L�ց�Q]����Z�ì�
   �����rЉ��H��E����r��0�Ǥ�i�d���F ��J�����
  �����l�2v�Z�,�:v�l��w�s�Q�^�V����N`� �������U���R�}ɤ���C *���

  Sections

  Size: 7.8MB - Virtual size: 8.7MB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  Size: 512B - Virtual size: 4KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  Size: - Virtual size: 8KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 5KB - Virtual size: 8KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  Size: 193KB - Virtual size: 7.1MB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .data

  Size: 2.0MB - Virtual size: 2.0MB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE