b802776085f7c0a8b6675eeac9494f2a[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b802776085f7c0a8b6675eeac9494f2a.bin
Size

1.3MB
MD5

81c88cbf0c279acd5a1b87dbd5da3e2f
SHA1

33c8497ccc40fefc903bbc86bb72802299c999a1
SHA256

f8aa82839c397d272f415a68845284232ccfe5e4875a18ff56c52f495ff4c492
SHA512

5839bc232ad99b199c57453b752f0c5cbd0bee016f581797bd80e23b64108373952b5ad2d3609b5c7b3c3b1b94f7a67757767ae452e39a85f0a495cdf26d91db
SSDEEP

24576:biGww+euROfMLeEQ3F5hqvSBqPSg9mnvTOvhRLT3MILOpRFQoK524H:GTOkLFQ30ag9mnKvr/NLOpTQ35/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/d0decbff239ced2b69327f8958ed9cca7a3d9838823a262146771f8c2bf526d7.exe

Files

b802776085f7c0a8b6675eeac9494f2a.bin
.zip

Password: infected
d0decbff239ced2b69327f8958ed9cca7a3d9838823a262146771f8c2bf526d7.exe
.exe windows:6 windows x86 arch:x86

Password: infected

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 591KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 64KB - Virtual size: 160KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 2KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 3.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 631KB - Virtual size: 632KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE