c130145c2fccbb9bd335b123bad50a91[.]bin | Triage

Sharing

General

Target

c130145c2fccbb9bd335b123bad50a91.bin
Size

89KB
MD5

c7f8051b9d1b752dc37edc225577f114
SHA1

a7be3ac0ac45c5a5d17ad149019a5f4ee1062433
SHA256

6bfe5cb75305012b4f0ada1eebfaf4014246ba16bd9c1cc10c287cdb03a8785b
SHA512

802977e770b26e284da0ee27e43ae6b21e31608a4833615754d33b38c0ce0da35f8a635ddd7974ae98b31dc9f81b2b6a1fe3341027fa621aaf4563ff9e7d75bf
SSDEEP

1536:jPKEfpj9D3dNt/3lJaZ21G01mMZllNWwU1hgmgRZf02v/UOKe5:mEfpj97Df2hgmOlNqbg4nOKe5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/052e63367e14824f06834174b31fdbc4762a133046979fb1d588452bdf301d7e.exe

Files

c130145c2fccbb9bd335b123bad50a91.bin
.zip

Password: infected
052e63367e14824f06834174b31fdbc4762a133046979fb1d588452bdf301d7e.exe
.exe windows:5 windows x86 arch:x86

Password: infected

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 38KB - Virtual size: 38KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.vrqns
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 149KB - Virtual size: 152KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.qnnuy
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.miuyr
Size: 1KB - Virtual size: 2KB

IMAGE_SCN_MEM_READ