a22b01850c1a7dd8000feea999d9c7c9[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a22b01850c1a7dd8000feea999d9c7c9.bin
Size

5KB
MD5

3f2a03ff30ab7a678ca764f1c93b7152
SHA1

1ce3fffda9f7d4fc29f995195b8b06fcd927e818
SHA256

f93ab6d15192a07a97308cddcb3bdb28a1eaa66cc13648c44a94e62fdd27593b
SHA512

bf63daed1e68bab99efca4e599a8141f2f91918f7b997870193bcc068a601c8963d308555851d3207ec95f85e4dd610a69bd887e177497c1d6f5cc037572dd8e
SSDEEP

96:FgdLI5VWrZrmQnMeaQTlaKNl9OyAdtK5u5223pnLLowHc9do:2C5QPnJltT9O45uA23FLzcC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/b152fd85aa66038ebc17230039fa9425b82789cf5dc670516d2a32fb56f9b631.exe

Files

a22b01850c1a7dd8000feea999d9c7c9.bin
.zip

Password: infected
b152fd85aa66038ebc17230039fa9425b82789cf5dc670516d2a32fb56f9b631.exe
.exe windows:4 windows x86

Password: infected

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 91KB - Virtual size: 91KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 2KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 69KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ