bffe6309abe8ca00be4a8cb7dac086900fdd5c9fb4f225246661b74c4005a512 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bffe6309abe8ca00be4a8cb7dac086900fdd5c9fb4f225246661b74c4005a512
Size

4.2MB
MD5

1b4dbf921094e9a64eab5a4d883cfc9e
SHA1

a99d575a6dbd71fa68975ea930e23e7a9849d4a3
SHA256

bffe6309abe8ca00be4a8cb7dac086900fdd5c9fb4f225246661b74c4005a512
SHA512

16df74466f5fec4eb697f0676f7e2e4a840275c63f1b8e753b1d8ea26eb1b6bb39cc2499a276cb1c9608077706b901df012c72baa6aa7e3d28f09f19409145d7
SSDEEP

49152:lYTvtDsK5Eogd7rwky2u+YOfJzqKpBxJ19uAKnJqysc7bEZgY+dV9Ce25fSozDIn:qvvIybKJzxxJ19D/xOJCvaoPj3dYr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bffe6309abe8ca00be4a8cb7dac086900fdd5c9fb4f225246661b74c4005a512

Files

bffe6309abe8ca00be4a8cb7dac086900fdd5c9fb4f225246661b74c4005a512
.exe windows:4 windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 4KB - Virtual size: 11.2MB

IMAGE_SCN_MEM_READ

VProtect
Size: 616KB - Virtual size: 616KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

VProtect
Size: 3.6MB - Virtual size: 3.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

VProtect
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_MEM_READ

VProtect
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_MEM_READ