bdcb667350d2d1e4dd71fbddf78b0f6c[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bdcb667350d2d1e4dd71fbddf78b0f6c.bin
Size

6.7MB
MD5

6985493137c24b794770182a7329ac11
SHA1

fd058d6b82a821587a1e6731a2130e9da93c82f5
SHA256

223a30e03b7a050fee30014a8900f1a455806341d7748b4394a211c3fbeaf387
SHA512

11aa52fe7b80fb39d3296465d9a3061662ae603a67851f353301ba15beaa93a4d57efd0ed1d0308d79560b0a7900f26590b9e26c1cb48181f4dfdee25298b900
SSDEEP

196608:tNtunlrRgbrgzFHz3yU5AtYQOePJOkF1gV:tNSBW8FHH5AtYQOuOkF1q

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/caadb922b4f0c4d16b73a40ad38d2d0e201cd74a00b5bcf33fa12721fb920632.exe

Files

bdcb667350d2d1e4dd71fbddf78b0f6c.bin
.zip

Password: infected
caadb922b4f0c4d16b73a40ad38d2d0e201cd74a00b5bcf33fa12721fb920632.exe
.exe windows:1 windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 37KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1024B - Virtual size: 588B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ