b4808b9cfd48da76d509e2b85e99e991 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b4808b9cfd48da76d509e2b85e99e991
Size

224KB
MD5

b4808b9cfd48da76d509e2b85e99e991
SHA1

7ef2038dcf4da36aa8874c32e23799d5040afc08
SHA256

21e6da7363580a97350efaed7974d5999976bafc286f47ae6cd04b0e76ff48af
SHA512

d602cb3bb0a19b4c39a5de17d591e7d44cfecc781fea1163629eaaa782320970516b2d3095e2b3af04de5bb2549966e1b372c8d7fce096491b8ab87e09e18e8d
SSDEEP

6144:HjOCrf7ZQGYuNVM64fFLKmsnpDAOhrf3WuP:Hbrf1lTM64fFOvDAOr/x

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Simycobra injector.exe

Files

b4808b9cfd48da76d509e2b85e99e991
.rar
Simycobra injector.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Documents and Settings\simone\Impostazioni locali\Dati applicazioni\Temporary Projects\simycobra injector\obj\Debug\simycobra injector.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 212KB - Virtual size: 211KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 194B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
screen.jpg
.jpg