ba5199b37d013a27f8b20ae1d19545ab | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ba5199b37d013a27f8b20ae1d19545ab
Size

1.2MB
MD5

ba5199b37d013a27f8b20ae1d19545ab
SHA1

0efffdb7b735cf3e6d68dbe927c6f94ab5c5deff
SHA256

434c9b4e79700ccfe8bb71a24861eeb3d24869b7ee9c0a4ebb83e5ea144a8873
SHA512

556791e862262d3757c173c6767da8ce4e9ce0e75f82a965343f8cdfeb24c34c2b5c7b4709cb405d56507a3d6a1d5329748be5399e3bcb68f3f82a9ca8aefe32
SSDEEP

6144:ei5HqF/lHOX1JYUDSa5NiqzMA/rx0U4rreGlNRh1JP2x0NI6MoyHpR1X3Xb2ZMXD:eOF0V2qEoe1X3Xb2ZMXFY7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ba5199b37d013a27f8b20ae1d19545ab

Files

ba5199b37d013a27f8b20ae1d19545ab
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ