2024-04-21_f369a7418d2fd12ea61224979dd43bf2_hive | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-04-21_f369a7418d2fd12ea61224979dd43bf2_hive
Size

4.8MB
MD5

f369a7418d2fd12ea61224979dd43bf2
SHA1

5668d2db1edc30ffbb510fd7d6951725b64ec5a6
SHA256

055b44a0924a69577e5e5ac59d7a96f971ab9c51efa0659eabb6dab8bd4b9257
SHA512

83ebe7f86072e280b6c2dbf103265d70cc4f2e4d9eba7d48c27f1a23279486bd3b1d51cefc37ce503f8e368ee6d8049f9237ce9e6decc7b88f88f0bf87827832
SSDEEP

98304:7715gE3rMsOdl7nAZ0kQQ0udx/6UBIU0uZrHaMLB6Z:jbotdBnmQko

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-04-21_f369a7418d2fd12ea61224979dd43bf2_hive

Files

2024-04-21_f369a7418d2fd12ea61224979dd43bf2_hive
.exe windows:6 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.text
Size: 17.7MB - Virtual size: 17.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 18.7MB - Virtual size: 18.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 905KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 854KB - Virtual size: 854KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.symtab
Size: 4.5MB - Virtual size: 4.5MB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ