Laze V24[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Laze V24.exe
Size

32.3MB
MD5

bb746c5a7883f23f266715bbce89b9c6
SHA1

de65ee27d60110be2226397fa5b12e6b3a7ba0cb
SHA256

683200d85cac27d5dc7932aa0a41e17130f8fd0aa23e635165db8bf0649cca37
SHA512

376a518701e4282d55b0236dc54d4047dde943d28a13a512d621cf130e019683b984b8b084583e5c39ccc66003d0ada2137dc83b44ae9cf67366362bbd0fe94d
SSDEEP

786432:nPNZDOnQAsKOiBVNiJHLel0199GErrzFqeFNROln4nA+sVa1ydSmgDC7yrv:lZD+OiB5lS7FrDgd4/dydLIv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Laze V24.exe

Files

Laze V24.exe
.exe windows:4 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

EWDH-^.5
Size: 770KB - Virtual size: 770KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

EWDH-^.5
Size: 770KB - Virtual size: 770KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 30.8MB - Virtual size: 30.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ