MalwareBazaar[.]8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

MalwareBazaar.8
Size

808KB
MD5

a79aab6632b2cc51d05f8f1369a266bb
SHA1

e26a435ff5da71f8ae04504597266a77a4d8ef7c
SHA256

7ea9e3f52f2af49c938680d2b27342b99c208d396646a8028305ca831a82263d
SHA512

a142b79671c4ef2239e40db811b0f3b19da91d6803d85b3df3c5c07a69419e3a0df7235704ac06830a1e10751a9854cfdd0832afa08553d895bde168e08ff4f9
SSDEEP

12288:Xnn//pSY+aZrwrT1CZoWvnEYql/8jAvLxg76H6bQSUtpdCrS2JyAkxQRaQa3vgqk:X/h/4rBC9kC76HbNjfQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
MalwareBazaar.8

Files

MalwareBazaar.8
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 801KB - Virtual size: 800KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ