97bdf6ab22ec4049f8fd0993bce79d21 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

97bdf6ab22ec4049f8fd0993bce79d21
Size

900KB
MD5

97bdf6ab22ec4049f8fd0993bce79d21
SHA1

b7876a7a450fb3d14679503204d50d37c2d03b11
SHA256

04df25fee777914be9f6e75a0c2014a1b0eeda853bb18a0d1434f8a02bd2c9a0
SHA512

95a9376483fa7c409cb4125e226df94cce39bc91b23da2a0dff8a50d6d146a418da599cfb97367cd806e14c0adce580a06469b9b9d1681620c6460e3d201c391
SSDEEP

6144:gILFPp57SkGvkwsRrhulErNG6rYjTM6y6F4RdACSBiV0dQ/F2i9MNFIwQ2cWrQMU:/pRQkGveRycSpCLATkidQRM1QXhME/d

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
97bdf6ab22ec4049f8fd0993bce79d21

Files

97bdf6ab22ec4049f8fd0993bce79d21
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Stb\Stb\obj\x86\Release\Stb.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 87B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ