c4291bad53a90753ebbeb836e4bf190d[.]bin

General

Target

c4291bad53a90753ebbeb836e4bf190d.bin
Size

145KB
MD5

2b3cfa667b872faad3bde5f356a9459a
SHA1

3155a8d1d336eb5c635256ee72eb1874348bc2c7
SHA256

9aeb8c4402c5eff9caaf17474059510c4104f541e123c171604732012dc6ba67
SHA512

56c1110c4a218b0c95ef54a6a5b3015078c18da622ffb452f2a9630dbf70ed9df49d875932e48ffcbe18710e813b7fa49a1490b68c7992ed5c3ae3747cd6c9e1
SSDEEP

3072:XV8y5TsLElmgnL/MtvvIABEYkbD9zgFMnpVeXywZC6pbVWPwApm0XZVONAwpq:l8y5wLElmgnL/MlAknkHqSn7yykpFApb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/a437a1d5fb6702f091637aaa116c879ce51a5916cb446ec4c2a215219903d938.exe

Files

c4291bad53a90753ebbeb836e4bf190d.bin
.zip

Password: infected
a437a1d5fb6702f091637aaa116c879ce51a5916cb446ec4c2a215219903d938.exe
.exe windows x86

Password: infected

034c4e8f2bac39172899d9efa85e3ef4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

_CIcos
_adj_fptan
__vbaVarMove
__vbaFreeVar
__vbaStrVarMove
ord695
__vbaFreeVarList
_adj_fdiv_m64
ord698
ord517
_adj_fprem1
ord628
__vbaSetSystemError
__vbaHresultCheckObj
ord663
_adj_fdiv_m32
__vbaAryDestruct
__vbaOnError
__vbaCyAdd
_adj_fdiv_m16i
_adj_fdivr_m16i
_CIsin
ord631
ord525
__vbaChkstk
EVENT_SINK_AddRef
__vbaGenerateBoundsError
__vbaStrCmp
__vbaCyI4
DllFunctionCall
__vbaRedimPreserve
_adj_fpatan
__vbaRedim
EVENT_SINK_Release
__vbaUI1I2
_CIsqrt
EVENT_SINK_QueryInterface
__vbaExceptHandler
__vbaStrToUnicode
_adj_fprem
_adj_fdivr_m64
__vbaFPException
ord717
__vbaStrVarVal
_CIlog
__vbaErrorOverflow
ord647
_adj_fdiv_m32i
_adj_fdivr_m32i
__vbaStrCopy
_adj_fdivr_m32
_adj_fdiv_r
ord100
ord610
__vbaAryLock
__vbaStrToAnsi
_CIatan
__vbaStrMove
ord540
__vbaI4Cy
_allmul
_CItan
__vbaAryUnlock
_CIexp
__vbaFreeStr

Sections

.text
Size: 288KB - Virtual size: 286KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Password: infected

Password: infected

034c4e8f2bac39172899d9efa85e3ef4

Headers

File Characteristics

Imports

msvbvm60

Sections

.text Size: 288KB - Virtual size: 286KB

.data Size: 4KB - Virtual size: 13KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 288KB - Virtual size: 286KB

.data
Size: 4KB - Virtual size: 13KB

.rsrc
Size: 4KB - Virtual size: 3KB