0870bdc9baac22a13e7d7aedc7cf7e12 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0870bdc9baac22a13e7d7aedc7cf7e12
Size

49KB
MD5

0870bdc9baac22a13e7d7aedc7cf7e12
SHA1

7b77727ff5f9086e9a5f68f51dce1cb045217d4f
SHA256

56f0b2a1e88a64c4161ed6e0b23a6d7ccee461f65712e20fa742afd1e89d203f
SHA512

e95d134f584ced5f99475190c0a6db04559ba9237ab9b0f9d35dbf29b954a30191a90d0cfc9ebcc87811d9207cb45205527d699ca74dbdd192332bf5eef11b4a
SSDEEP

1536:EK6egHOq8Fb7An/nEeRRYzLp1f6f4rtjJgX:6e1p7An/ntR2HffJJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0870bdc9baac22a13e7d7aedc7cf7e12

Files

0870bdc9baac22a13e7d7aedc7cf7e12
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

Ylva0
Size: - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Ylva1
Size: 49KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Ylva2
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE