d0ac3a6a9db42362ed09f3a5d192001d[.]bin | Triage

Resubmissions

12/04/2024, 14:17

240412-rlw2vseb4s 8

12/04/2024, 14:16

240412-rlfpwaba85 8

12/04/2024, 14:16

240412-rle4caba84 8

12/04/2024, 14:16

240412-rlegtaba83 8

12/04/2024, 14:16

240412-rld62seb3w 7

09/04/2024, 07:09

240409-hy5ebsce3z 8

09/04/2024, 07:09

240409-hyxdqahb58 8

09/04/2024, 07:08

240409-hypzmshb54 8

09/04/2024, 07:08

240409-hydavahb37 8

16/01/2024, 03:46

240116-ebvptsdec9 7

Sharing

General

Target

d0ac3a6a9db42362ed09f3a5d192001d.bin
Size

3.6MB
MD5

7a5f5739949438841b6a0d8c91099cd2
SHA1

855b4f2453b9861168006723d22affbdabd4323b
SHA256

1f89ca5528f31c195803ca920564fd61ff2cafd22e4a5a1992e181964822ff75
SHA512

da88f67d55f87ce99eefe0afbb5fb1e2fdee3a4fb077f509fd860abe29943db646ccde97cb55cf94661325c45e47782fc9a34a777329767e803c4dcd0ec4bf6d
SSDEEP

98304:Xpct5BAmxAmyGtoOER0Jm6nm7qoEFRJWyj9m1uC5X60hq+:qdt6n6s6mErJWyj9mM41hV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/bf7c85cb7b220a98945bbcccfd4c7ebf838f8897418bf3186e024b6c1f183e4f.exe

Files

d0ac3a6a9db42362ed09f3a5d192001d.bin
.zip

Password: infected
bf7c85cb7b220a98945bbcccfd4c7ebf838f8897418bf3186e024b6c1f183e4f.exe
.exe windows:6 windows x64 arch:x64

Password: infected

7d1e46538212ac3a885211bc83f92d58

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

GetCommandLineW
GetConsoleCP
WriteConsoleW
VirtualProtect
CloseHandle
ReadConsoleW
SetLastError
Sleep

comctl32

UninitializeFlatSB
FlatSB_SetScrollProp
ImageList_Copy
ImageList_GetIcon
ImageList_Add
ImageList_Merge
MenuHelp
ImageList_BeginDrag
PropertySheet
LBItemFromPt
ShowHideMenuCtl
InitCommonControlsEx

shell32

SHGetFolderPathW
SHGetDiskFreeSpaceExW
SHHandleUpdateImage

Sections

.text
Size: 168KB - Virtual size: 165KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9.1MB - Virtual size: 10.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

IDATA
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ