4f10639de8c8d3866daf30b0408bfe03[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4f10639de8c8d3866daf30b0408bfe03.bin
Size

56KB
MD5

4f10639de8c8d3866daf30b0408bfe03
SHA1

67e9dbf420381cc71ed63ef6f0f57f613854e9a5
SHA256

13c2ad896556cdf1e6827e63ad93aadf3d4bf751abdcb05f168e130f4a65fa3f
SHA512

4d435c6cc0c02f039531ebbcfbfd97d83da7b768e19af87b09ebb100fbb87f9551dd049b4fba6826f67587cb210fae690e3a686347b0ab47b24a6c6a0b05bb7c
SSDEEP

1536:oJ5Zfe0bTJkksSURQUJid97KLfbX3mQFl4yOOmF:oJC03qVLRxu7KLLm8G

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4f10639de8c8d3866daf30b0408bfe03.bin

Files

4f10639de8c8d3866daf30b0408bfe03.bin
.exe windows:4 windows x86 arch:x86

42a01d776e699c83de5ff8d9fb773ad1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindFirstFileExA
GlobalCompact
GetVolumePathNameA
GetBinaryTypeW
WritePrivateProfileStructW
GetModuleHandleExA
SetCommBreak
SetConsoleTitleW
lstrcatW
CreateJobObjectW
FoldStringW
SetEnvironmentVariableA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE