bc5871a228f04f60ec20db020a67a66d63de78e826369f52649fb33027c270b5N | Triage

Sharing

General

Target

bc5871a228f04f60ec20db020a67a66d63de78e826369f52649fb33027c270b5N
Size

10.0MB
MD5

dc7080300c79c4210afea30a21857190
SHA1

2fac836674badf9684bdafaaf9719e7a27232d12
SHA256

bc5871a228f04f60ec20db020a67a66d63de78e826369f52649fb33027c270b5
SHA512

040077c4de1e35d7442dddd02d94951fc08a2f61b68951d6ccdb6f7e281a97a89d9d2856f8a85fa0aa60e0e12873865ce636335524c0e864235c9af1ed08ae8f
SSDEEP

98304:hwc6YFuJkC0sPVsfzJF74Gv1hemoe/M8dsJh:6FJkC0sCbZthec7sJh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bc5871a228f04f60ec20db020a67a66d63de78e826369f52649fb33027c270b5N

Files

bc5871a228f04f60ec20db020a67a66d63de78e826369f52649fb33027c270b5N
.exe windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.enigma1
Size: 157.5MB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.enigma2
Size: 272KB - Virtual size: 272KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE