2023-05-25_c48f2127f2d4015a871d1026a69201da_blackenergy_cryptomix | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2023-05-25_c48f2127f2d4015a871d1026a69201da_blackenergy_cryptomix
Size

36KB
MD5

c48f2127f2d4015a871d1026a69201da
SHA1

d3cd63376c70a9aa7b96286c162c7b7558148a8d
SHA256

99de44e4486bde4e3023e4292f7ee9d6d8ef4a927ccc65692db9d5dc66971237
SHA512

60412966bb0d11e02a46876dcadb3a52a2452793000cfd6a137380419db1936b6b9171c0e62fb732a92ac9b53212d81ce140499868ffc4aa3833145fd7089b17
SSDEEP

768:fyYQFaZK0d5jX6dF6XnmuUywIVNGKGyT:fyxoX5j6dI3muzGKX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2023-05-25_c48f2127f2d4015a871d1026a69201da_blackenergy_cryptomix

Files

2023-05-25_c48f2127f2d4015a871d1026a69201da_blackenergy_cryptomix
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 540B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ