bTda[.]exe | Triage

Sharing

General

Target

bTda.exe
Size

36KB
MD5

76571b3e678fe0a8db4cdd6aa35332b9
SHA1

3296b8a534a74d462d01cb4502851710575bea2e
SHA256

09df4341d6f961fe9ee80843d63bc6dbe630229eb4782faf068b3058ac91472e
SHA512

383c7a0c3cce0fe2fce196456c014c6af55fb773cd9e81ee41f47e5073146b738363197f1659142e137d95326486088d8206c22ba920730a6ab676e20a3b8d7d
SSDEEP

384:RLd2LzreBCAuKiEZePC45SY2OzRLTm3yilqr6LZbdyvGj:RizrecPEZeK45SssCvGj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bTda.exe

Files

bTda.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 672B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ