7229bce5ce94ad8c3efdac6116ca0dfd[.]bin | Triage

Sharing

General

Target

7229bce5ce94ad8c3efdac6116ca0dfd.bin
Size

1.9MB
MD5

d882284b8b16c42468f76e9852fe5037
SHA1

d944b62780b8615025d52583f6bc38499a200b39
SHA256

ad666ea1d17fa72cfc3f3a16a6c55c30c089af3db84b4085fe353b5bfd48b1e4
SHA512

9cfc3f9470c85520114020f1d064d9dcde6fec7eb8eb27b6e2e8f1cfd286726ef5b7aee64e22138743f8e83659bb8536a6eb31101e06d142b57520a1e0b1fc5c
SSDEEP

49152:aGWo9kGfUe2J7DTpi1McvAhBkfcCZtHP2jW1Y0h:aRijfUeeE1NAMfcCZtHrN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/786cacdf01a6f995fa366ec96f869e36aea02b478426595de4d72ce297b92312.exe

Files

7229bce5ce94ad8c3efdac6116ca0dfd.bin
.zip

Password: infected
786cacdf01a6f995fa366ec96f869e36aea02b478426595de4d72ce297b92312.exe
.exe windows:6 windows x86 arch:x86

Password: infected

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 416KB - Virtual size: 416KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

xzlvcbdv
Size: 2.8MB - Virtual size: 2.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

jygfelid
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE