bc8815f1a4d2c5691ac277743b711ec4 | Triage

Sharing

General

Target

bc8815f1a4d2c5691ac277743b711ec4
Size

146KB
MD5

bc8815f1a4d2c5691ac277743b711ec4
SHA1

89d3f484c021188cea0807aa6a5039333e88fd3f
SHA256

9bcc222456fe0a001d41f15388448177803b29165d15c0b73dceb2ad8c690df3
SHA512

bcc94a3e70a1236d0e0e84fe0fae480640863ae20492adff255bc3ae80d64d747b4189e2d23dae075e4a893c21816cb0e86bcf66f46552cadba628bd4a272c96
SSDEEP

3072:VEBjmRY8Vu/YZyzc92XgBaLEFePoJCDMtTUdDig1gBaXLlSx//L9VP4MRAz1+kN:VZVu/YZyzc92XgBaLEFePoJCDMt0Db0O

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bc8815f1a4d2c5691ac277743b711ec4

Files

bc8815f1a4d2c5691ac277743b711ec4
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Jeton\Documents\My Received Files\TBOT\Backup\TBOT1\obj\Release\TBOT1.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 119KB - Virtual size: 118KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ