bTuY[.]exe | Triage

Sharing

General

Target

bTuY.exe
Size

36KB
MD5

eb4b0035fc8b26d8c5f98e2d2df7a077
SHA1

46e3bf60ad761804f192b7d7c49aa6101a6ca9a9
SHA256

df81eb307e177a41a1bc84a889459f61365eeeec514a03aab0665d8d1e302b26
SHA512

91533e3e0a697ea926c54a51b5ad6cd35e673f483fa122bfb8d6b7e4e0b493507c34b8948403cca1d92941bdca0c37d1cc246aa3722458749bf145f6b242582f
SSDEEP

384:5ULdClEUdi/dMkt1QmY/GKSEZePC45SY2OzRLTm3yilqr64qbUyvGb:5CUEUdi/dMc1tEZeK45SsbcvGb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bTuY.exe

Files

bTuY.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 672B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ