8ef5f3667f45f2fa4d917b851e0e5586 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8ef5f3667f45f2fa4d917b851e0e5586
Size

2.7MB
MD5

8ef5f3667f45f2fa4d917b851e0e5586
SHA1

81899b0fb1f2874c2782b3bd0110bda6c0e6d351
SHA256

0998b445fd6e5f19a3937f8ac1ad72c9608c15b520ab947faf133979d6755110
SHA512

cba8be92a2f712c1cb7f11359c760f9c1364a43424f676728f9dc34aea7b26fe7edec93381c3bd2d6ec9ccee3adf38d705979b6d8dfd1d6a7ba7001a801f0605
SSDEEP

49152:Sq41dOKC927butmkO+wAOInO4XrztygxLHkJE4VBCmUi6AjW/MUSdGRf3/uu:6T3Chs+wE9XD8VBbjxAZuu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8ef5f3667f45f2fa4d917b851e0e5586

Files

8ef5f3667f45f2fa4d917b851e0e5586
.exe windows:6 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

bckgzm.pdb

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 324B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 74KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ