Bitmap2[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Bitmap2.exe
Size

449KB
MD5

e6fde1d03e517023456a524254a4ab1c
SHA1

18cc63ea206412e6e95e930e3c907d9e4ccdc828
SHA256

17c3a80b3b0b77c77132e17ae27372cf7f34bc2ffbdbdaa9026286fd04ced3ef
SHA512

31a2f65c7b69da483c96bf0b57397ee318b1035dc165835b26a07e14918b5e02e4494a1f6552182fdb0ed8c2bf3adab4a899fb1716ec51b90d7875f327906d45
SSDEEP

3072:f+0q7Do7FBdCGPVHzzgd2HPVVf9AebuLFfK9s7I/mkltK4L6INgDd9zqi3lhai6t:f+0kDUrak9gorrUq6ai3lx/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Bitmap2.exe

Files

Bitmap2.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\Hatsu\source\repos\bmp2\bmp2\obj\Release\bmp2.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 342KB - Virtual size: 341KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 106KB - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ