artifact[.]bin

Sharing

Copy URL

Twitter E-mail

General

Target

artifact.bin
Size

587KB
MD5

f9ed4d7fc5d978abdc6860539c0b2491
SHA1

66013ed2cdc880ce12af82019095aec9364d47e3
SHA256

24c1836bd5c60dde678cb2508cc5fb64a2aaf69d5ddf0dec3a3ff4ceee63904a
SHA512

c2e6a9a3f7e906ae94af666e0261c7337e93d81c18dc1c337fc1a0440d50197ed924f51b0be9c5dbc9b5e16e51dd40ef93d2eaa76a77a0c2ac68136312008fbe
SSDEEP

12288:JcYzQFE8IxkNke/zE2z+ry4vVMaRz8QFbn+79Uy/ls8aCwd:2uQFVIxvozr+gIz8++blstC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
artifact.bin

Files

artifact.bin
.exe windows:5 windows x86 arch:x86

b913f9cb3cbe9cf97fefd6e5bf6bd28c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetEnvironmentVariableW
RemoveVectoredExceptionHandler
WriteConsoleOutputCharacterW
GetModuleHandleExA
GetLocaleInfoA
FindResourceExW
FindResourceW
LoadResource
SystemTimeToTzSpecificLocalTime
InterlockedIncrement
SetConsoleTextAttribute
CancelWaitableTimer
ConnectNamedPipe
SetFileTime
GetCompressedFileSizeW
GlobalFindAtomA
GetSystemTimeAdjustment
GetFileAttributesA
SetTimeZoneInformation
TerminateProcess
GetAtomNameW
FileTimeToSystemTime
GlobalUnlock
SetLastError
OpenWaitableTimerW
LocalAlloc
SetConsoleOutputCP
AddAtomA
GetTapeParameters
GlobalUnWire
VirtualProtect
GetCurrentProcessId
LocalFree
lstrcpyW
SetFileAttributesW
SetEnvironmentVariableA
CompareStringW
GetStartupInfoW
RaiseException
RtlUnwind
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapAlloc
GetLastError
HeapFree
GetModuleHandleW
Sleep
GetProcAddress
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
GetModuleFileNameW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
DeleteCriticalSection
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
GetCurrentThreadId
InterlockedDecrement
GetCurrentThread
HeapCreate
HeapDestroy
VirtualFree
QueryPerformanceCounter
GetTickCount
GetSystemTimeAsFileTime
SetFilePointer
WideCharToMultiByte
GetConsoleCP
GetConsoleMode
EnterCriticalSection
LeaveCriticalSection
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
FatalAppExitA
VirtualAlloc
HeapReAlloc
HeapSize
SetConsoleCtrlHandler
FreeLibrary
InterlockedExchange
LoadLibraryA
InitializeCriticalSectionAndSpinCount
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetTimeFormatA
GetDateFormatA
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
GetLocaleInfoW
CreateFileA
CloseHandle
FlushFileBuffers
GetTimeZoneInformation
CompareStringA
GetModuleHandleA

user32

GetMonitorInfoA

Exports

Exports

Gorgeous
Probka

Sections

.text
Size: 532KB - Virtual size: 532KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 5.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.kogey
Size: 512B - Virtual size: 1B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sez
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.new
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b913f9cb3cbe9cf97fefd6e5bf6bd28c

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

Exports

Exports

Sections

.text Size: 532KB - Virtual size: 532KB

.data Size: 6KB - Virtual size: 5.8MB

.kogey Size: 512B - Virtual size: 1B

.sez Size: 1024B - Virtual size: 4KB

.new Size: 17KB - Virtual size: 17KB

.rsrc Size: 6KB - Virtual size: 5KB

.reloc Size: 22KB - Virtual size: 21KB

.text
Size: 532KB - Virtual size: 532KB

.data
Size: 6KB - Virtual size: 5.8MB

.kogey
Size: 512B - Virtual size: 1B

.sez
Size: 1024B - Virtual size: 4KB

.new
Size: 17KB - Virtual size: 17KB

.rsrc
Size: 6KB - Virtual size: 5KB

.reloc
Size: 22KB - Virtual size: 21KB