Annabelle[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Annabelle.bin
Size

15.6MB
MD5

87083abe8f6a1f3feb9b04c21244cbf6
SHA1

15f26181d5bb7c950b89bdd14e9c476733505987
SHA256

f7882b954e52e97e1183061ed47b467a431a5a8210e7f9571d4dcb806981c7e8
SHA512

418239f98e60ff5c31f21d8365ec66feda6f9d58ef5a962d1bab20e78a64f95369a22eebf2a4a977419652977287712e9b483645a28a075b6ad7943806b56d90
SSDEEP

393216:W8vgbvOB2+LtNaw7UCo5yMudfCyIXxq2i:W8vg7+2+LtNxUCo5yMuZCM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Device/HarddiskVolume3/Users/Demo/Desktop/Annabelle By TGet!/Annabelle By TGet!/Annabelle/Annabelle.bin

Files

Annabelle.bin
.zip

Password: Sentinel2024**
Device/HarddiskVolume3/Users/Demo/Desktop/Annabelle By TGet!/Annabelle By TGet!/Annabelle/Annabelle.bin
.exe windows:4 windows x64 arch:x64

Password: Sentinel2024**

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 15.7MB - Virtual size: 15.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 268KB - Virtual size: 267KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
manifest.json