bb5acd23b9f11cc2f9189123d074c02f488e22c5e487408f102352a2680bcfc5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bb5acd23b9f11cc2f9189123d074c02f488e22c5e487408f102352a2680bcfc5
Size

11.2MB
MD5

a42ab793cf6e86ad30fbf6382f61f8c6
SHA1

ada5878a3f17f6c769e23187491dc154d309cd69
SHA256

bb5acd23b9f11cc2f9189123d074c02f488e22c5e487408f102352a2680bcfc5
SHA512

31eb9315f46b8eb9dba11b7a27ad082e4e94ef01e9c1d5f13d34bc0017d7b8f02a57c44f50840f6c578872b7dbbb35cff90d05eea15876b9bbd78a2973be5235
SSDEEP

196608:01ZrE6X5jgS4Yi/G8w7XpFfhgFj4gVBVVDylLMM0RUQejqaJkOK:kO6JjNcO8w7XpFfh+jfHreSMQOq3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bb5acd23b9f11cc2f9189123d074c02f488e22c5e487408f102352a2680bcfc5

Files

bb5acd23b9f11cc2f9189123d074c02f488e22c5e487408f102352a2680bcfc5
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 100KB - Virtual size: 173KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Size: 8KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 4.6MB - Virtual size: 4.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

WorDr
Size: - Virtual size: 8.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.boot
Size: 6.5MB - Virtual size: 6.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ