b34cb0b54609d7exeexeexeex[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b34cb0b54609d7exeexeexeex.exe
Size

2.0MB
MD5

b34cb0b54609d7bdac0ff24eaa0c05f0
SHA1

893c3d0f3aa3e72ac81a06a84c26a8794f9623f2
SHA256

dfa8a006871e1679d97a0b64d95f643f17420a549a50602d0cbc5ec3269e1af2
SHA512

e677dfdf17cf536d85e15b465b99fd8ef77e771713745b18e726ea1bc51e56ed899d0d24fa0f804a0706051b707123bf8363ff84baede579f1050a741a9322da
SSDEEP

24576:uD3HrwMFcVKfDJXXTD+b3ES45kEqvKzN/akrAlsu4BatjmJuG6Sv+C3E4mus:uD9cViJTD+b3ESKk7vaN/M+Bgfgdmu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b34cb0b54609d7exeexeexeex.exe

Files

b34cb0b54609d7exeexeexeex.exe
.exe windows x86

493cd143c788a237448d7882734a8126

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc

user32

GetMessageTime
GetProcessWindowStation

Sections

.text
Size: 672KB - Virtual size: 672KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE