bfef9e688a62edf7d7d952d647de20c835cffab591a26d6e56eade0ad9297cf4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bfef9e688a62edf7d7d952d647de20c835cffab591a26d6e56eade0ad9297cf4
Size

5.5MB
MD5

780a53e28bc2a8495f13ede435de3544
SHA1

49c8ae8b4d4ebb6cd6088c119261ba908a117ae8
SHA256

bfef9e688a62edf7d7d952d647de20c835cffab591a26d6e56eade0ad9297cf4
SHA512

bc645ac7e3de91f14248b4fae4c5f975ff7e012d075804dfe35fa0731760674be10e61c014b09387c9f34565acf5692f3592574de7b932f6b1b5055f974e4970
SSDEEP

98304:UdRq4AONC9qituGNhDq15yvVR90qudubUD1pAVXZPfZqfthYV8l7e:c/PNMBKzyva3axVpPfZqFhWM7e

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bfef9e688a62edf7d7d952d647de20c835cffab591a26d6e56eade0ad9297cf4

Files

bfef9e688a62edf7d7d952d647de20c835cffab591a26d6e56eade0ad9297cf4
.exe windows:1 windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1024B - Virtual size: 584B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 67KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ