0199f2257bd552c0894700432586c6ba[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0199f2257bd552c0894700432586c6ba.bin
Size

96KB
MD5

0199f2257bd552c0894700432586c6ba
SHA1

e940cac5f27e302afaed81a86f1b59bf625d45b8
SHA256

dadd47dfb9a5c8f3b17b51b9099ebbfa715ea7d1cadc6fd0ae000f8e327f3930
SHA512

fa72cf9e05ef6733a999fc2e1acfb00e6b94f9b13c3f8415ab2da66f3073d1ef318248ff0a588fa9087eea829479c8ffc42a76aaa2bf918f713b259e13940001
SSDEEP

1536:PgYGu9A4vmtXkNjJKVCjVGQe490PcGtlOQwbR6ist:IYZ9YEJKVQX0BMmt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0199f2257bd552c0894700432586c6ba.bin

Files

0199f2257bd552c0894700432586c6ba.bin
.dll windows:4 windows x86 arch:x86

7dc6eb9641e38fa82b2c6b2fbbd6fcf9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

ms.pdb

Imports

kernel32

HeapAlloc
GetProcessHeap
HeapFree
MoveFileWithProgressA
FillConsoleOutputCharacterA
CreateTapePartition
Beep

Exports

Exports

vsukt

Sections

.text
Size: 52KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 622B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 452B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ