Dewell HBL DRAFT -HBL#SBKKS0007377-MBL#COSU8029379970 -6 FAB 2023[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Dewell HBL DRAFT -HBL#SBKKS0007377-MBL#COSU8029379970 -6 FAB 2023.exe
Size

596KB
MD5

6b036c7623d3100e8deb9b8851326abc
SHA1

47a2606f4830bb935f3baf46bfcefee973ead6fc
SHA256

8471fcbd72382b544bf61c72954cd414af72316ecabff24485617a0fc800a9dd
SHA512

6ab20cfe0b60156b4f5be4a0c17217f1e197dd7531fb178f53ee364b0761ad7b8f25a8c31e8567cefb6718333928666f3ee2312ec5527050b0948732c18e12c7
SSDEEP

12288:WYdNAeScK9Dne7f4WYMTyPdLX2tuCAe/ZXP7DyNmDP6XzAFLZE43G5p9OwRIkGY/:R4Tp7MTyPdLX2tuCAe/ZX/yNc6y1E43d

Score

1^/10

Malware Config

Signatures

Files

Dewell HBL DRAFT -HBL#SBKKS0007377-MBL#COSU8029379970 -6 FAB 2023.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 594KB - Virtual size: 593KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ