b32f213a595af856ecab6976e6e305dd[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b32f213a595af856ecab6976e6e305dd.bin
Size

1.1MB
MD5

011c6dd661339f7a09f7f1743dbe78a0
SHA1

0693347c909e69a067b1d672783d51e601dc60ed
SHA256

dc21f7cd6b693bbc36b4c39dad983c3eb9f5810bb7603ed3f1003a51745acce1
SHA512

c05283e2dffff4c5c1c5b06f1f1d7bfe7475f794006e8d2fdfa940d90dc3afabeeb2b6723a1c53d1b82ddf510375f37e0b1a1b6e8ded2b1f246098f79a3288ee
SSDEEP

24576:I4RkwZWGCfPQVxnrQoHf9Af7YFJyMDxZq5ddIikAIp:vkEaPQPkvDiJyMDx+dIsIp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/864d4ac2ae2311cfd01324e9b760872a861e565ef57da7df2d0919e0c9aafaa6.exe

Files

b32f213a595af856ecab6976e6e305dd.bin
.zip

Password: infected
864d4ac2ae2311cfd01324e9b760872a861e565ef57da7df2d0919e0c9aafaa6.exe
.exe windows x86

Password: infected

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1024B - Virtual size: 584B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ