da5e22f3b6fc047d26ddd2c30797deeb[.]bin | Triage

Sharing

General

Target

da5e22f3b6fc047d26ddd2c30797deeb.bin
Size

1.8MB
MD5

4284684b16c6232524cf383fbae8cb4b
SHA1

5a87ae4f7a9e14f174428561132f0f5b9c0c4fce
SHA256

c0f17042985a2fa52146746aa9e0c34f54a517c9d9620a56825ff10a6020cc9d
SHA512

b97592cb11024435d7d8e8787b0f8d3656b2cd19e716bf0a1e0e943a61d04a2223496cee8e4517acfacd83f3c16fd4747ead9ee4ac3d521244917ac36fef0fdb
SSDEEP

49152:h/XlPki9jB+dM21rA5lpGHiZwfPUQY9IRM9HF:b5qd/hA5lppZwfcQHM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/49be208ddb7c2d4f96416a4ece75a5de7c8cd4d8f6baaec39b74bcfa04a0bfdf.exe

Files

da5e22f3b6fc047d26ddd2c30797deeb.bin
.zip

Password: infected
49be208ddb7c2d4f96416a4ece75a5de7c8cd4d8f6baaec39b74bcfa04a0bfdf.exe
.exe windows:5 windows x86 arch:x86

Password: infected

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.text
Size: 3.2MB - Virtual size: 3.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 104KB - Virtual size: 104KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.didata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 280KB - Virtual size: 280KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ