fbb9116a095d1ee9b22cdb692775de74c6773298c85f6bb09261d6324c990b3c | Triage

Sharing

General

Target

fbb9116a095d1ee9b22cdb692775de74c6773298c85f6bb09261d6324c990b3c
Size

3.8MB
MD5

d490fa4598aaf49860600a1a13b177f7
SHA1

12b047e5e2e63c0c69e08ace8be3d09063da2ad9
SHA256

fbb9116a095d1ee9b22cdb692775de74c6773298c85f6bb09261d6324c990b3c
SHA512

e3de293e3c35835728d08add851060bc65c084e8342ab24f98c3a2cb9bc0408f549e1fbabf3f4b21af8e8df2bc0a2c2dda67a683351807224c2c0c46e88dbfdf
SSDEEP

49152:racO0k8ZQFvDbGglFyNw3NGdMITSnyTAPHRPmSFMxqmkBDjFcCj:1O0PKFvD6sq4GdMCAPHRuSZPdj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fbb9116a095d1ee9b22cdb692775de74c6773298c85f6bb09261d6324c990b3c

Files

fbb9116a095d1ee9b22cdb692775de74c6773298c85f6bb09261d6324c990b3c
.exe windows:4 windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 392KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 120KB - Virtual size: 117KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

VProtect
Size: 616KB - Virtual size: 616KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

VProtect
Size: 28KB - Virtual size: 180KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

VProtect
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_MEM_READ