MSI1BB4[.]tmp | Triage

Sharing

Copy URL Twitter E-mail

General

Target

MSI1BB4.tmp
Size

705KB
MD5

8465fbe0897e70386d423782083a6391
SHA1

c0ae4ee99fb991524d362a70ea1ac02903b752df
SHA256

3ffd7e7a80f04a260561b97fd7f32291a65555ed16f43c72ae2148471ad975d5
SHA512

64e576740e4acbc6f3610b4d9e19ea81ac3858226d36cdecff0a75b8cf3d43aaf5c149049bfe30484ff439c8208daccc1a5b4b9e8caf8e8033ab2f25994bd407
SSDEEP

12288:APreocGCdp1GPreocGCdp14lKRjWNXgwJh88TJy5zJzF1vqK60DjO+:AjRcMjRcyrXggulBNHN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
MSI1BB4.tmp

Files

MSI1BB4.tmp
.dll windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.text
Size: 446KB - Virtual size: 446KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 216KB - Virtual size: 215KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ