419b0cefde9e8409823ebfb06a419281[.]bin

Sharing

Copy URL Twitter E-mail

General

Target

419b0cefde9e8409823ebfb06a419281.bin
Size

24.4MB
MD5

08c9900fdf8011dccdab4b37a75551b5
SHA1

296dba380866b2ce9a89c29453c87bf161e9ae82
SHA256

8ac48100ac98a4ec1cb3cd09ec24fb26204f01babf85d1854f9c4cae277d48c0
SHA512

97d26fd8a2087a127417648ef5d0e81524450e3bea3ad1677d8b6752d4a68ebd82e5de5350a90363f4deba474028337b0278b9186494b51ef6814955fc05e63f
SSDEEP

393216:T1KKsIhF+it/mbnbxI3UPc/ody1UpXmBaPiQpe6zHrm7nuREwEcO/9tYG6PMV7:T1Hf+Nndt01UGaaQTLK+LEX/9beE7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/7b08fc8d2e28c7801fca68ac4e8043fd11ef0e0fb23be81ed462b704c32bedea.exe

Files

419b0cefde9e8409823ebfb06a419281.bin
.zip

Password: infected
7b08fc8d2e28c7801fca68ac4e8043fd11ef0e0fb23be81ed462b704c32bedea.exe
.exe windows:6 windows x86 arch:x86

Password: infected

ca439271272059e3ec188e0d4911c558

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\ProgarmRelease\Burn\Release\Burn.pdb

Imports

kernel32

GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentThreadId
UnhandledExceptionFilter
InitializeSListHead
IsDebuggerPresent
GetModuleHandleW
SetUnhandledExceptionFilter
WinExec
GetCurrentProcessId
GetProcAddress
DeviceIoControl
CreateThread
FreeConsole
CloseHandle
LoadLibraryA
TerminateThread
CreateFileA
Sleep
OpenProcess
GetSystemTimeAsFileTime

user32

GetWindow
GetWindowRect
GetDC
SetWindowPos
InvalidateRect
SetProcessDPIAware
GetDesktopWindow
LoadIconA
GetWindowDC
GetForegroundWindow
GetCursorPos
GetWindowLongA
DrawIcon
GetSystemMetrics
ReleaseDC

gdi32

CreateCompatibleDC
PlgBlt
DeleteDC
TextOutW
SetTextColor
SetBkColor
DeleteObject
CreateSolidBrush
SelectObject
CreateCompatibleBitmap
BitBlt
StretchBlt

winmm

PlaySoundA

vcruntime140

__current_exception_context
__CxxFrameHandler3
__current_exception
_except_handler4_common
memset

api-ms-win-crt-convert-l1-1-0

_itoa_s

api-ms-win-crt-utility-l1-1-0

srand
rand

api-ms-win-crt-time-l1-1-0

_time64

api-ms-win-crt-string-l1-1-0

strcat_s

api-ms-win-crt-heap-l1-1-0

free
malloc
_set_new_mode

api-ms-win-crt-runtime-l1-1-0

_initialize_onexit_table
_register_onexit_function
_crt_atexit
_controlfp_s
terminate
_register_thread_local_exe_atexit_callback
_c_exit
_seh_filter_exe
_set_app_type
_initialize_narrow_environment
_cexit
_get_initial_narrow_environment
_configure_narrow_argv
_initterm
__p___argv
__p___argc
_initterm_e
_exit
exit

api-ms-win-crt-math-l1-1-0

_libm_sse2_cos_precise
_libm_sse2_acos_precise
_libm_sse2_sin_precise
__setusermatherr

api-ms-win-crt-stdio-l1-1-0

__p__commode
_set_fmode

api-ms-win-crt-locale-l1-1-0

_configthreadlocale

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25.7MB - Virtual size: 25.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Password: infected

Password: infected

ca439271272059e3ec188e0d4911c558

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

winmm

vcruntime140

api-ms-win-crt-convert-l1-1-0

api-ms-win-crt-utility-l1-1-0

api-ms-win-crt-time-l1-1-0

api-ms-win-crt-string-l1-1-0

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-math-l1-1-0

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-locale-l1-1-0

Sections

.text Size: 10KB - Virtual size: 9KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 1KB - Virtual size: 2KB

.rsrc Size: 25.7MB - Virtual size: 25.7MB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 10KB - Virtual size: 9KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 1KB - Virtual size: 2KB

.rsrc
Size: 25.7MB - Virtual size: 25.7MB

.reloc
Size: 1KB - Virtual size: 1KB