cryptedStealer[.]exe[.]bin | Triage

Sharing

General

Target

cryptedStealer.exe.bin
Size

8.5MB
MD5

2848f45f915d29afcb99468347ddab87
SHA1

1b0a9c4d52b032404be57c2e7c7cf8e161867353
SHA256

850b081a123ef8bf5e154b6200934ecd32bdb4f790fe87f199d8ac95df3a208d
SHA512

69df691a99394a10280b0b95913d7fec2b1ad7ea3b62add76a46108125b87a279d6b95b0c03524de4a12ed21471cf298beaa5eeb153cd84a5d395d441d27ce89
SSDEEP

196608:shTb9B0BPrDz4pxgZZPy5RmStgxb/z6FDiSJXqeUh4mTyZB:aTb9epDz4MZZ4RmxYDiScfhHuZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cryptedStealer.exe.bin

Files

cryptedStealer.exe.bin
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 8.2MB - Virtual size: 8.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 351KB - Virtual size: 350KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ