baf94a1468729f6843ceea78cfa48c2dd13c2dc9ee413e008e9ed3f832836ff6 | Triage

Sharing

General

Target

baf94a1468729f6843ceea78cfa48c2dd13c2dc9ee413e008e9ed3f832836ff6
Size

2.8MB
MD5

fdf987c7719917ca779e9325ecc8bbda
SHA1

8c80e2d7aa7b1dfe27baeab1ed5fb9261689b26b
SHA256

baf94a1468729f6843ceea78cfa48c2dd13c2dc9ee413e008e9ed3f832836ff6
SHA512

3af6c9cfcfde4e5e143a2c97601ebd2a782bda74a2655de5227fbe02d1c155c77ab3935b12722cddd65eae660a8863ec20801b25ec52fb92483516c85101a8c6
SSDEEP

49152:1wf0GviZiPMXv9V6mhwNcKtzW8N7OfyC5OV00BOdyXNCG4UVIol26p2KOSd59:18vvPM/sNc18kn2t4C9hOSd7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
baf94a1468729f6843ceea78cfa48c2dd13c2dc9ee413e008e9ed3f832836ff6

Files

baf94a1468729f6843ceea78cfa48c2dd13c2dc9ee413e008e9ed3f832836ff6
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 4KB - Virtual size: 2.0MB

IMAGE_SCN_MEM_READ

VPR_DEMO
Size: 580KB - Virtual size: 580KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

VPR_DEMO
Size: 2.2MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

VPR_DEMO
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_MEM_READ

VPR_DEMO
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_MEM_READ