02f9ee40a42c73d5ab38d3ef17370ff5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

02f9ee40a42c73d5ab38d3ef17370ff5
Size

275KB
MD5

02f9ee40a42c73d5ab38d3ef17370ff5
SHA1

fe762420dea6ac5f981714c4972b6cc392f49c16
SHA256

a9b235c1b194cbd6132e994260bb1718db4bc944df10bba2b2d726c278576d57
SHA512

d4940a4f91ed4b8b32fd3785cb81123d01181f81099b49315acd5299f797f2592d7dd4c0a42c81ee93e94e8f84f082bcaecb57967faec55289b56a3773a05181
SSDEEP

6144:OfnegFwKXSr2xOT9PBrs/cNsmWUQI4Az2oTQ:AecSKOT9PBLmLtI4e2oM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/CBId.exe

Files

02f9ee40a42c73d5ab38d3ef17370ff5
.rar
CBId.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

Size: - Virtual size: 680KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 273KB - Virtual size: 276KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Info.txt
新云软件.url
.url