2c953e98e873ecdaa68d6de36b19b2a9[.]bin | Triage

Sharing

General

Target

2c953e98e873ecdaa68d6de36b19b2a9.bin
Size

302KB
MD5

b10bbddc146ca7b8b63954eaf7afbee9
SHA1

90fd00d48ba34dcf3b7c6d6fc01feb6bb98ad1f9
SHA256

78fdda8746d52ff1eac1a50552262fd59272bff1be4047627f305fd95749741a
SHA512

8a055bd28731f4b0d05493352de5c6dc9ee29ce64ad3fa5ad0c92370361922d8bc8bfbcdcc68597bc1d6d23e4b0794a3acca67a5a3d4918bff3e080f0d250a0b
SSDEEP

6144:CobTJr/TZw6eCMMVnrjNjss/BjXl2y0klx1R+uRqXfASu39:DTJra63vVfNjN/BjXlZVl1bYPW9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/05343f5cd3d82f5e10a08832924e811ace699effe6543c4855d3467a238ca7b4.exe

Files

2c953e98e873ecdaa68d6de36b19b2a9.bin
.zip

Password: infected
05343f5cd3d82f5e10a08832924e811ace699effe6543c4855d3467a238ca7b4.exe
.exe windows:4 windows x86 arch:x86

Password: infected

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 520KB - Virtual size: 520KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 180KB - Virtual size: 180KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ