befac12a674370378910a7c3f69530b3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

befac12a674370378910a7c3f69530b3
Size

131KB
MD5

befac12a674370378910a7c3f69530b3
SHA1

885513d9bff9a14ec9213caf19a77d5ea79cf071
SHA256

95098e98f7c4025aa4090535e335ea3313f6a14045fa74aa535d293052d45938
SHA512

1c8368995774ba05f4d0975f52f03f5e5034bcce7a70ba96a7cb694ed7ca05dfc3f9c7690a97c01c001069cf401781268bebcbc9e7f0479518738e3c80d81176
SSDEEP

3072:ZdIPBuu9YC8ECVtnxX9ffpYLSmn5nQZt54yWwwMk0tyyLvS9:ZKPL9Utnx9eL1hlwit

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
befac12a674370378910a7c3f69530b3

Files

befac12a674370378910a7c3f69530b3
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

Size: - Virtual size: 152KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 130KB - Virtual size: 132KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 287B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ShenLan
Size: 44B - Virtual size: 44B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE