General
-
Target
Blammed.exe
-
Size
2.7MB
-
MD5
64cb060ae824059178ce752e6bc2ef26
-
SHA1
4d9b92fe1e065fac1c5333197615f2b6f6c493f3
-
SHA256
4c74e40610cef1aa3e6a9e3c62351a4469de3e87bf7e4edc6684aedc197dd439
-
SHA512
e491cd8aab2bb18102e1a01d590016a8c2792be3a16c5180395a32c3964470112a9c0a2c7574fe2a342282e4df18a780aae9708f51228ce126d5d026fb2724ca
-
SSDEEP
49152:o1s9/QTNw2DzB/zt4wk4j18wqNBkkqQRblbTfqZNpw1jhOQA9hLxeo6NBO:Me/EewjjWw2BxqglbTf8pz5Rel
Score
7/10
Malware Config
Signatures
-
resource yara_rule sample themida -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource Blammed.exe
Files
-
Blammed.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
Size: 2.7MB - Virtual size: 2.7MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ