b04e4d888ee04b93ef1f1723792065b12c52e5d3062f07dab7d842346379edd5N | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b04e4d888ee04b93ef1f1723792065b12c52e5d3062f07dab7d842346379edd5N
Size

996KB
MD5

21c01f595238fec1e8c80b7a6e363170
SHA1

fbee00a816f320e105c7089f1afbc82a9946ac80
SHA256

b04e4d888ee04b93ef1f1723792065b12c52e5d3062f07dab7d842346379edd5
SHA512

45b733c4c12ee41d56c1eef4f32924db502a11c18eaad8829297babfcfc0e4fcd83fe0062dfe29e8d9b7a8fc9b579b60ee196da9704576036f7596bebf76d213
SSDEEP

24576:q+t6VDDD2ezKd6tNPj5wlHLbL+O+/L6tezf6Pu2ImC:q+t+D2ezEiNPWlXReD3mC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b04e4d888ee04b93ef1f1723792065b12c52e5d3062f07dab7d842346379edd5N

Files

b04e4d888ee04b93ef1f1723792065b12c52e5d3062f07dab7d842346379edd5N
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\Documents and Settings\nymanl\My Documents\KeyHole.v4\DRM_30\Source\LauncherMFC\Release\Keyhole.pdb

Sections

.text
Size: 276KB - Virtual size: 276KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 107KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 568KB - Virtual size: 568KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ