bb8bc49ce29bb391158a4715579b58ba737da179b1a6cfb95537610385c0efc4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bb8bc49ce29bb391158a4715579b58ba737da179b1a6cfb95537610385c0efc4
Size

1.5MB
MD5

59616f0554ce569f8c725d0cfa165dfe
SHA1

93f13420490e3769116bead731a3109e7c11c134
SHA256

bb8bc49ce29bb391158a4715579b58ba737da179b1a6cfb95537610385c0efc4
SHA512

c589bfa1fa945ca0bd92d251fb41c3f78c37993f1b8a9a2fe0c2528f974216a4761e3fab183591b97abd242c6f37beea2a6f47d6d6996b5d25ed12edadf7c59a
SSDEEP

6144:t0Q7Jm2f7h1ahdCBdgG1fNITzPNYPankofc/IupBJvOgHy0dz4:h7Jffa2W3fipD1dz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bb8bc49ce29bb391158a4715579b58ba737da179b1a6cfb95537610385c0efc4

Files

bb8bc49ce29bb391158a4715579b58ba737da179b1a6cfb95537610385c0efc4
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.textxc
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 86B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ