8b40b3056d26836411985a3a61f39d20 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8b40b3056d26836411985a3a61f39d20
Size

66KB
MD5

8b40b3056d26836411985a3a61f39d20
SHA1

feb02a0c0b4ced63cd1ebdf194216cfaa6198731
SHA256

8d266875b9b11ed8118b4fd90cc14d0c0e03d8c10a9ab48463eb995e7fa7124b
SHA512

6e4514eb3c9b58ca6de404ddae7e5ee6b2102bd584a379c65664076f72ddff1277621ae303123b970fb01863cc9aa4805bf2255b1180117c42f404e2676785f5
SSDEEP

768:k00cAP5niZJfPIEiyMeKIuJSH1apMOSncktYuXzphDZ4PPbS4U:oP5iZJOX7SBhthd432

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8b40b3056d26836411985a3a61f39d20

Files

8b40b3056d26836411985a3a61f39d20
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

KeyMake
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

AntiKill
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata2
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE