5d524b011f071e9fa5153924bab72c15[.]bin | Triage

Sharing

General

Target

5d524b011f071e9fa5153924bab72c15.bin
Size

1.1MB
MD5

bccc0362bea2ab821996b3f824d4c07d
SHA1

8b6e4d52195dda3babed011d770806dfac18c884
SHA256

be933a77fce9e72a1cb55389bbde1cb41ecdc7c0f11c2a7fb624314bf2af50b0
SHA512

be7717501f5f1e970e1cea0a34ab78e7463fdba798f1cf69d8ed114ce6ddc76ba23304ed736e70135acb8eed266f8f1aa2ec51e75eb410eede10b39b0766f379
SSDEEP

24576:DA9CBGFiU4qzluLb7oWCF13Z/a/xlB0CqOmepy1V:DAkIi4vF7/a/xl6Cqf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/aac39d073593fd30b7288c0eb03a8ac24bea0909bd441f1ecdd94058e8bb9953.exe

Files

5d524b011f071e9fa5153924bab72c15.bin
.zip

Password: infected
aac39d073593fd30b7288c0eb03a8ac24bea0909bd441f1ecdd94058e8bb9953.exe
.exe windows x86

Password: infected

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1024B - Virtual size: 584B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ