General
-
Target
bgb_1.5.10.zip
-
Size
468KB
-
MD5
9a549e06955c758aa280ceb7f5cfe3e3
-
SHA1
b9131426d85608057e3a07efabfb7c5d15eb9d9d
-
SHA256
f05a7a8c526f97f43a93f65b33605277f5677bc43d1ad1f2a752c7326618365b
-
SHA512
b1fdafbeffe99885b362cbb8ca1cd61a18bc5a45cb6ab10ea69a702abf02a1d8cc426bcc3862fd9b087e2b8f19840d0210775f31e5ea1c75a49b95fbc8e9ecf6
-
SSDEEP
12288:r50CTB1xYYYXW8PLfpTfKREcDasW2nTxE+wKIUWmM:r50IzmfPPLxTfl4/WQ1EwIUK
Malware Config
Signatures
-
resource yara_rule static1/unpack001/bgb.exe upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource unpack001/bgb.exe
Files
-
bgb_1.5.10.zip.zip
-
bgb.exe.exe windows x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
UPX0 Size: - Virtual size: 1.3MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 433KB - Virtual size: 436KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 31KB - Virtual size: 32KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
-
bgb.html.html
-
bgb.ini
-
bgbtest.gb