bdc0ddf4f03af37e07416b5678c38140N[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bdc0ddf4f03af37e07416b5678c38140N.exe
Size

4.8MB
MD5

bdc0ddf4f03af37e07416b5678c38140
SHA1

d76175ca993e0d9db2e73d5afe87b92cd3664f48
SHA256

0172205d682692a6e7084c3e8871fcf6c16bc59281364793437e728b01e6ee8c
SHA512

696ed80419463802c1f2ef0126f175ac0dfb6c6bfa4df47d48fdf256ebb55b0f193473d81ed92c0ec9ff6935356c94cd933e1535b4c5f45e4c4ff9f9cedd7720
SSDEEP

49152:vzS1FLCM2rxlJXcR0yw7tJZkrGG/kgybbqdwo2ZvceadmhdC8XnSHiM8roMEA9Ae:b4SlKWywcBysE28E894v+H

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bdc0ddf4f03af37e07416b5678c38140N.exe

Files

bdc0ddf4f03af37e07416b5678c38140N.exe
.exe windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 6.3MB - Virtual size: 6.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 1024B - Virtual size: 640B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 165KB - Virtual size: 164KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ