bb720866f3ca43d1e3f1f947eecc82e1d0af4b23eebee2be9e80bf436e4d95ab | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bb720866f3ca43d1e3f1f947eecc82e1d0af4b23eebee2be9e80bf436e4d95ab
Size

310KB
MD5

20ce6650eebb342f08fd183319b414f8
SHA1

355f0a9d9829f3ace22f7b53236e204e34fdfe00
SHA256

bb720866f3ca43d1e3f1f947eecc82e1d0af4b23eebee2be9e80bf436e4d95ab
SHA512

d0e156e322bf5ec9c86810ea9413ee9c4374d71c314b0a544afdef371397bf5a26f30eb78569c1b6d2dc89254a7b52127308803d35bbe2c68c1adbfe84884693
SSDEEP

6144:Tdj5j7tbRlnqwyMCEDWdHksgytpkN9SWgZ19sTnflblLl4Mnn:pjjREwJW9lgakug7flLZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bb720866f3ca43d1e3f1f947eecc82e1d0af4b23eebee2be9e80bf436e4d95ab

Files

bb720866f3ca43d1e3f1f947eecc82e1d0af4b23eebee2be9e80bf436e4d95ab
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\rje\tg\bj\Release\ojc.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 308KB - Virtual size: 307KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ