cbf67723e67718d4ca3dd4baccaf44a2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cbf67723e67718d4ca3dd4baccaf44a2
Size

692KB
MD5

cbf67723e67718d4ca3dd4baccaf44a2
SHA1

0707f4f3b42ff7a9268a1de9c0134d36bc0972b2
SHA256

9af3d11fef444123f3bb2cdf2d62560dee69f9608615e1d86b5ebe7e2edca2e7
SHA512

5cf9d180431bf096cdf228c3b2880c47be39b3c7f1595e6da6167923eae999741b45c5ed7ed0569f1b2c580a72fb2eecb32b97133722c417b0c7a381c0ad5dee
SSDEEP

6144:7X4mqOfN9bZdyRFxIY7nCxcAglddLTe6UvwoSSM263crc4cB+ctwxcAglddLTe6E:BbZY+Y7nRtftxi9Dt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cbf67723e67718d4ca3dd4baccaf44a2

Files

cbf67723e67718d4ca3dd4baccaf44a2
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

PDB Paths

C:\Documents and Settings\Ya\Рабочий стол\лови В\packed.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 528KB - Virtual size: 528KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 163KB - Virtual size: 162KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ