BlueStacks_Multi-Instance_Manager[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

BlueStacks_Multi-Instance_Manager.exe
Size

11.6MB
MD5

81a0cd656c7331578ba330e333d2396b
SHA1

96b4ed281f696ed0ca5f93e4c453878dbddee770
SHA256

9b16f96cec091e58fc86833734b0034913b3c00c7d73d7a9ad02af61e4f845b0
SHA512

c0f9bf16bfdb279523b6c9e79d6831fa5c97f17b2dcb702b07de1aaa22619405b8f13baacb5d2740f64cee77b0ac951a982bd6683932ea45d7a68c9253bbd93b
SSDEEP

196608:sNk4AJZt5xFeuqcILmM7BjRtvpg16AnhdFz4OlD7z7DDBRbImK:sNk4ALtTFBqZmuBPxgthTUOlD7z77b

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
BlueStacks_Multi-Instance_Manager.exe

Files

BlueStacks_Multi-Instance_Manager.exe
.exe windows x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

H^hYhGn
Size: 189KB - Virtual size: 189KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

H^hYhGn
Size: 189KB - Virtual size: 189KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 11.2MB - Virtual size: 11.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ