b5b83eb359d87bf01a8859595a8f7aee | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b5b83eb359d87bf01a8859595a8f7aee
Size

171KB
MD5

b5b83eb359d87bf01a8859595a8f7aee
SHA1

162074f9bcca073f1516572620346ce7be3c848a
SHA256

79923d96b7e023a50287f46d3fd3d1584a4a5f931e75449a58da8e04fb1c241e
SHA512

0488172a7affd7061348c05ebe109f2b981b5b68a5ac556f2240f977f304b2fd75545088940cc9c790675f4bbe31eb1bcba3ea4aed558791bf355da06680fd36
SSDEEP

3072:N9McnKy5QXDERPPXK+Af6uUxZimQjVCAg4iff6BMU9hdZAXW+d17WRVDC+:BnKtXDEVPXKFUbimdfSBMUV+X3ZWDW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b5b83eb359d87bf01a8859595a8f7aee

Files

b5b83eb359d87bf01a8859595a8f7aee
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Exports

Exports

___CPPdebugHook

Sections

.text
Size: 145KB - Virtual size: 148KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ