BK[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

BK.exe
Size

72KB
MD5

4da24acd357d2e222d8660d993533275
SHA1

b46e627f6ec571856731c3593e207e35df76ab9e
SHA256

a0807f0963b31db8e24dea18fbbc0429971a7f6e6dd6b140eea6728e0bb3ecbe
SHA512

a8bae2f2f76a9a4f4e4ab400088e9a6739fe552f79203672f2f8399d0678f291e3b2b3b5279da6977a5523b318c683e6dde816ff4fd1fe91a091861daca53aad
SSDEEP

1536:WSyttCNYp8ViC5AYKONj4BQbOI+6ol6xDOZmh0DZVKip:W1ttsU/C4LBQbOIWOOEKZjp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
BK.exe

Files

BK.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 69KB - Virtual size: 69KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ