a40346689ea10d782bb880b4506b2ae0545276e54b2d3af734ecb3cd293ccac7

Sharing

Copy URL Twitter E-mail

General

Target

a40346689ea10d782bb880b4506b2ae0545276e54b2d3af734ecb3cd293ccac7
Size

2.2MB
MD5

068fb74575a927234324349988885668
SHA1

3e2fd836820c9c635dc8d42616dc7b944442363b
SHA256

a40346689ea10d782bb880b4506b2ae0545276e54b2d3af734ecb3cd293ccac7
SHA512

9ecdfce98f744d34c0a8e1a00df60a7d416e7d7b598439e821c6d7492054efba759a7d0f438d8364a186eb09e2df55d753846cced5d6892276f95b3cb8796ffe
SSDEEP

49152:rCUdKArSqgVbjnNkE2EoO+IEv66OqY6jh4zNiUh5hYvPjtKLjWS0z:rv/rCjnNkE2A+Ird6N4zNfPhYv0W

Score

10^/10

Malware Config

Signatures

Detects executables packed with Babel 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_Babel

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a40346689ea10d782bb880b4506b2ae0545276e54b2d3af734ecb3cd293ccac7

Files

a40346689ea10d782bb880b4506b2ae0545276e54b2d3af734ecb3cd293ccac7
.exe windows:4 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 2.2MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 46KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc/BITMAP/110.bmp
.rsrc/DIALOG/102
.rsrc/DIALOG/103
.rsrc/DIALOG/104
.rsrc/DIALOG/105
.rsrc/DIALOG/106
.rsrc/DIALOG/107
.rsrc/DIALOG/111
.rsrc/DIALOG/202
.rsrc/DIALOG/203
.rsrc/DIALOG/204
.rsrc/DIALOG/205
.rsrc/DIALOG/206
.rsrc/DIALOG/207
.rsrc/DIALOG/211
.rsrc/DIALOG/302
.rsrc/DIALOG/303
.rsrc/DIALOG/304
.rsrc/DIALOG/305
.rsrc/DIALOG/306
.rsrc/DIALOG/307
.rsrc/DIALOG/311
.rsrc/DIALOG/402
.rsrc/DIALOG/403
.rsrc/DIALOG/404
.rsrc/DIALOG/405
.rsrc/DIALOG/406
.rsrc/DIALOG/407
.rsrc/DIALOG/411
.rsrc/DIALOG/502
.rsrc/DIALOG/503
.rsrc/DIALOG/504
.rsrc/DIALOG/505
.rsrc/DIALOG/506
.rsrc/DIALOG/507
.rsrc/DIALOG/511
.rsrc/DIALOG/602
.rsrc/DIALOG/603
.rsrc/DIALOG/604
.rsrc/DIALOG/605
.rsrc/DIALOG/606
.rsrc/DIALOG/607
.rsrc/DIALOG/611
.rsrc/DIALOG/702
.rsrc/DIALOG/703
.rsrc/DIALOG/704
.rsrc/DIALOG/705
.rsrc/DIALOG/706
.rsrc/DIALOG/707
.rsrc/DIALOG/711
.rsrc/DIALOG/802
.rsrc/DIALOG/803
.rsrc/DIALOG/804
.rsrc/DIALOG/805
.rsrc/DIALOG/806
.rsrc/DIALOG/807
.rsrc/DIALOG/811
.rsrc/GROUP_ICON/103
.rsrc/ICON/1.ico
.rsrc/ICON/2.ico
.rsrc/ICON/3.ico
.rsrc/ICON/4.ico
.rsrc/ICON/5.ico
.rsrc/ICON/6.ico
.rsrc/ICON/7.ico
.rsrc/ICON/8.ico
.rsrc/ICON/9.ico
.rsrc/MANIFEST/1
.xml
.rsrc/version.txt
.text

Sharing

General

Malware Config

Signatures

Files

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: 2.2MB - Virtual size: 2.2MB

.rsrc Size: 46KB - Virtual size: 46KB

.text
Size: 2.2MB - Virtual size: 2.2MB

.rsrc
Size: 46KB - Virtual size: 46KB