MalwareBazaar[.]15 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

MalwareBazaar.15
Size

576KB
MD5

6dfc871d809e70f7c07deb46dd01735d
SHA1

312b434a93c2d32c54812e01a85d47d73f1375c6
SHA256

33f8b2938048a821d1c515daf12ebb890ad5751b0d06cc2942ce976d2d9d1341
SHA512

6537db135fa7e0dd8c2e642936572a948aab6e5c0ad0b1097716af2e78e14e0b1bf629b9a8a60dd8cb63d3c6d50649e46b8a56f6436bfedd30a2f029b5565bdf
SSDEEP

12288:TtjQpjndC21cm+Gxngcp5/eWbZ+0VujJCwoHEAmD:TtojdC2h+Gx3T/NV7Vy3y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
MalwareBazaar.15

Files

MalwareBazaar.15
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 500KB - Virtual size: 499KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ