BLTools v2[.]7[.]2[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

BLTools v2.7.2.exe
Size

16.4MB
MD5

a53be55ad3d5c5dac4bd9cf36cdc4ef8
SHA1

c03b8411944df23807e38b007572ea70a2f13089
SHA256

ef14be17faf7d9b0e37c77e9a9e5664fa4c0a7f8de7e095740818f6fbf8344c3
SHA512

27ea54db74b75a0e785f49ba49de8a6984d968a0b6bbcc3e944573cd09a7ce1db2b7eaefc1e5251eecb734b8810faf0aac651542335ea95f486c550dce55a97a
SSDEEP

196608:vRGw//1ejKfVI8uvlalYDfvVX5kz7aefxHRRoHM6a3RPdeg1VTEmv0/Ow3GEyhCm:5NHkESlhR1e5zoyBFbTEmMWthwZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
BLTools v2.7.2.exe

Files

BLTools v2.7.2.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 16.3MB - Virtual size: 16.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ