66bbd30c6bd09df5a475025a0e331d3a2dbd4afd7eed2af373fa1f556bf7a3c5[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

66bbd30c6bd09df5a475025a0e331d3a2dbd4afd7eed2af373fa1f556bf7a3c5.exe
Size

343KB
MD5

a735612a26ec5bc7a3471625270f6f35
SHA1

e16cbf94012267abc20e0de7413431e671d96738
SHA256

66bbd30c6bd09df5a475025a0e331d3a2dbd4afd7eed2af373fa1f556bf7a3c5
SHA512

6b0dcb1a63c8ba8f1af29c508ce86ae27f7e1e5c1d022907ac2eaa93df76bc721ec7f96435f9d222ee6abfb54334f3bd2d795df9c9e8aafa66aade6129a5fb94
SSDEEP

6144:2T2OKLdH6f3JeIOCoxnNUjqUFloPq6474HAfNPO1AHu5F:2BKLdayx6+HYNPOOOv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
66bbd30c6bd09df5a475025a0e331d3a2dbd4afd7eed2af373fa1f556bf7a3c5.exe

Files

66bbd30c6bd09df5a475025a0e331d3a2dbd4afd7eed2af373fa1f556bf7a3c5.exe
.dll windows:6 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Sections

.text
Size: 305KB - Virtual size: 304KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 248B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ