b3e9b6cb92b76f8bdf7995959957b87a127d837e001ff7cd41cc84a71d70d660 | Triage

Sharing

General

Target

b3e9b6cb92b76f8bdf7995959957b87a127d837e001ff7cd41cc84a71d70d660
Size

185KB
MD5

7b123c9bbb9dd924c26a88268ee2d429
SHA1

08370d9a02b8ad7f3536beed5a9dec4e9a9c2482
SHA256

b3e9b6cb92b76f8bdf7995959957b87a127d837e001ff7cd41cc84a71d70d660
SHA512

c952b60cb11235162186449ba293736737d2c42ae1d35b1a7369376640ee18fe4d3500fabe42af38aa3eb2b61d8f9045bb87137cbab5aaa9b9c7bee2a77655d4
SSDEEP

3072:dN231lOl3crBRjG66rCdVkLK233QTh0vXL6eIryV3sKNykSO:7231lOlmGUkLvVsKNy0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b3e9b6cb92b76f8bdf7995959957b87a127d837e001ff7cd41cc84a71d70d660

Files

b3e9b6cb92b76f8bdf7995959957b87a127d837e001ff7cd41cc84a71d70d660
.exe windows:4 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

iMazing-CLI.pdb

Sections

.text
Size: 138KB - Virtual size: 137KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 47KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE