bolazx[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bolazx.exe
Size

577KB
MD5

f950e7e33eb0e826485b2a4ce01acef8
SHA1

d56b1b1bb130322b5582c1a6abf8fc273792de88
SHA256

87d3bbd8edcab168832890e4d362542e2be35fe286ce9a2ebeeb8216d08cca0f
SHA512

6d9ac925dfa352b366f71cb50112c483e4cba178531bb2e9a8b7cf3775c1696f53e7fca13c73b04c23a4bd404957d6603648033a9c4d94f73e120b34cce17186
SSDEEP

12288:fRKZHYI7LkpgdSQAzeLgZKXyD1vUQ14yuKgcJcrhxtRaGLp:ZqT0pgwVeLhJQ+yuKJJYhxtRaGLp

Score

1^/10

Malware Config

Signatures

Files

bolazx.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 575KB - Virtual size: 575KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 904B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ