labis8[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

labis8.exe
Size

40.6MB
MD5

4685e034dbf6138e211226d5496d01d4
SHA1

ccbb6ea75d789ccc723550e6da325da9f9eb70a9
SHA256

dc0022ef3c7a07ec979a43223935eb3a1a6ff9cb8343f720e4903cecd2ac1537
SHA512

60460c0bfbbafca7cc20645f17afd335698924db0e7cd017469a21a6b7ed4f3cf112b3ffdcc121e2d6034537f82fafd0e2ae5f669cf9caf6274cdc7b168a3245
SSDEEP

786432:ixK3AbsynHRozUVEvcLOozsOg4IrLSIyZ48K8RyFA7izMTK03YisjI8o:YK3AbsyHPWELOwsbSgYRvrbois88

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
labis8.exe

Files

labis8.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 40.5MB - Virtual size: 40.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ