b2effe9fd1e46439e71f111e76c633a064c51329adf6d5b97b3a43f597bd92d4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b2effe9fd1e46439e71f111e76c633a064c51329adf6d5b97b3a43f597bd92d4
Size

63KB
MD5

65d4dacf1a8d29e1df3fb6c7be13c053
SHA1

da2c11795dff618a3cbd0ee9306f0718207075f9
SHA256

b2effe9fd1e46439e71f111e76c633a064c51329adf6d5b97b3a43f597bd92d4
SHA512

963e58f90c4c228632dcbcf1d1d855ea5c554f50266f34f37ee5a65510e9c5c240598317cb4890fc27f935eff4b68dc34cc3ab3e3c99c9a5496800fca657e44f
SSDEEP

768:lW8AqYnOo1RXqS/Sn3mXD23LlV+vy+HVTifmkfgDH0ndrK9wg2pDZ7ne/QJqEy5R:S8gP99ijMi2Sg2pDteYgvyPCT0ZOnX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b2effe9fd1e46439e71f111e76c633a064c51329adf6d5b97b3a43f597bd92d4

Files

b2effe9fd1e46439e71f111e76c633a064c51329adf6d5b97b3a43f597bd92d4
.exe windows:4 windows x86 arch:x86

503e2207693aad932c0f881aa31cfcd3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnterCriticalSection
SetFileBandwidthReservation
OutputDebugStringW
WerSetFlags
BuildCommDCBAndTimeoutsW
OpenProcessToken
PssWalkMarkerRewind
PssWalkSnapshot
LZDone
GetApplicationRecoveryCallbackWorker

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 49KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE