9f5dfcd48fdb88e62e0e11efe89cbb18[.]bin | Triage

Sharing

General

Target

9f5dfcd48fdb88e62e0e11efe89cbb18.bin
Size

288KB
MD5

248e116ba7d8e7d2cede87f5c6f0aaa6
SHA1

08c1a02f7a2514b918956cdc43f489860166a718
SHA256

7a3176b7ba532c0f1a1838c24b673814156bcd28ca4c591f58c5578a7a803dd8
SHA512

f77bc288e28ba9d8639549d9cc4d177b774004527e04b8a4aafa3b98242444768454ca3fd9290654e24e7c07d89505d9b5781e807dbb03ab2c0a8b0d86181a74
SSDEEP

6144:PQQBxQz3fGlGRT4k6CtmtaU6eNSzok8XJNgZklFr81Ik:1M4k8tx69f8XMalZ0Ik

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/a5cb30c30d046a1a6d74dab19220829517b92f2776202ea3a2fd7d731b7fffdf.exe

Files

9f5dfcd48fdb88e62e0e11efe89cbb18.bin
.zip

Password: infected
a5cb30c30d046a1a6d74dab19220829517b92f2776202ea3a2fd7d731b7fffdf.exe
.exe windows:4 windows x64 arch:x64

Password: infected

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 630KB - Virtual size: 630KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 327KB - Virtual size: 326KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ