btcr439a[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

btcr439a.zip
Size

4.8MB
MD5

030658a35afd171413e3b7fda3505280
SHA1

3b7d53418f07aeba23c9bb4050fb23fa5b387d35
SHA256

6bb2c39844e556505b1ed1a2d3b570e7c67e06482c0a1a754baf5a891f59cd9a
SHA512

015c45ffe6e99f0b85e484fcd74d60c0e445dbafb6513b9e65287c30e21c0ca649e53a10e0b4743ce2cb290b0e0493fb1bce2705c547a5d58f8f13162718399e
SSDEEP

98304:rG954fqTOs6miQVQmzeuBKOaNRS6KYYtZzCaJ:rGaMBF/pB8Nli7J

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/BTCR/Keygen.exe

Files

btcr439a.zip
.zip
btcr.nfo
btcr.rar
.rar
BTCR/BTCR-1.png
.png
BTCR/Keygen.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 345KB - Virtual size: 344KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 226KB - Virtual size: 226KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
BTCR/btcr.2.png
.png
BTCR/btcr.png
.png
file_id.diz