f5bccca6f16c275e30b2bbd2732c19bc[.]bin | Triage

Sharing

General

Target

f5bccca6f16c275e30b2bbd2732c19bc.bin
Size

299KB
MD5

8f93bcd45f7bd6d10aa4f7094dcfa2f7
SHA1

8e28a2d965be1295737d0a4783c42fd4311564e9
SHA256

9c5e8d4edcfb492d6c8911534454ffb6acc6023e02a10c9b2d22119b6c6455fc
SHA512

809a4bf8fd27796405310289d2b118ec725c744988d338c6f3326f8ece3e3c2b11d867377b1d519cbf574b6ea6ae4b349d3d6b617647ebd993dd447fa63f58e2
SSDEEP

6144:5yg39knWop87/AJdX2QNHwsY3BC1YKRbu9HuAnhKzhANJikPUs86Q+/WpmC/wvEQ:r9knnp87oJBFmf3BC1YKRy9/nhKzhANp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
unpack002/25c58bf051df8e65c188ba0ae6a183ed8e8fc129543d2c2fd0ebb511b7459327

Files

f5bccca6f16c275e30b2bbd2732c19bc.bin
.zip

Password: infected
25c58bf051df8e65c188ba0ae6a183ed8e8fc129543d2c2fd0ebb511b7459327.xz
.xz
25c58bf051df8e65c188ba0ae6a183ed8e8fc129543d2c2fd0ebb511b7459327
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 378KB - Virtual size: 377KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 347KB - Virtual size: 347KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ