8fdd42c77efdd36d731179240f7bcc09[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8fdd42c77efdd36d731179240f7bcc09.bin
Size

250KB
MD5

f90b7d658fb7d418d06610371af1a4dd
SHA1

fbca0f5f778632d970c9cc6ca3e9f7e889cbd978
SHA256

04694a346c190cb2f0c9d4a4079661fc802cd35b6b51bfe15256c8c4b0bb312f
SHA512

a6d1341272008a775c1e87cc06675e36261cb8225fc27f1bf24fc6071322ffbcf1492b3814abea22db1a35407a476f035f9daa37c5a633c7402c68fbc23aca38
SSDEEP

6144:0RGRbiw70CUQwtjPhit7aTg0ZyGOF/FvZbzUgKky/OCqUgt:0QHUtL0sZybXvRYO1R

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/42e425bd1793edb881efed5a364861200484ff9f0f033e6196d32465b435b5a4.exe

Files

8fdd42c77efdd36d731179240f7bcc09.bin
.zip

Password: infected
42e425bd1793edb881efed5a364861200484ff9f0f033e6196d32465b435b5a4.exe
.exe windows:4 windows x64 arch:x64

Password: infected

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

E:\桌面\cxx2\cxx2\cxx2\obj\Debug\cxx2.pdb

Sections

.text
Size: 298KB - Virtual size: 297KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ