Tera-Bonus[.]exe-Malware-by-kapi2[.]0peys-main (2)[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Tera-Bonus.exe-Malware-by-kapi2.0peys-main (2).zip
Size

137KB
MD5

9a4d7f57f5ce3ec7079442dd087554c6
SHA1

abf85df593f5cf8a804afe57ae36d35234af35ee
SHA256

2d0c4d44524766947341a53abd82b181fa82f2f5a88b2ff91ffa462496009356
SHA512

7fe4b276e7e7d0dfa288346c103a3895aea9147b77402b3ad31fba69738102a5875bd6e89521c5f10293193031e6eec5762146c104fb591041facd6f6a2a9dc5
SSDEEP

3072:oqPGZ5PS/ikXjHXsUaNlBf2M9X4x6TwYVKRiOnmCEZ6/sOF2:zOZk1XjsrBV4kTXK9m9k0b

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Tera-Bonus.exe-Malware-by-kapi2.0peys-main/Tera Bonus.exe

Files

Tera-Bonus.exe-Malware-by-kapi2.0peys-main (2).zip
.zip
Tera-Bonus.exe-Malware-by-kapi2.0peys-main/README.md
Tera-Bonus.exe-Malware-by-kapi2.0peys-main/Tera Bonus.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

-C$=)
Size: 92KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 102KB - Virtual size: 101KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ