Bandicam Activator (2578924721)[.]rar | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Bandicam Activator (2578924721).rar
Size

49KB
MD5

1d1fbd47ded980aa08906f9f6c1c3c4f
SHA1

9b78d5c10e8625e62908fd618d94e7d3ce4cd1de
SHA256

cae2141e23e60b35dfab86868c7e2d07488e590dabac651edc82e2f28fb1e270
SHA512

66b70c535a7c42f26b28f7a45c28376e094f0ec0b2b1c0b40c997ca192c091de0c0a29d76c52d2f30aef044fbb62657f9377b6e9b88ec30a9b0d64f216b9455a
SSDEEP

768:NGZCK6hG6CMiXAwnP173gTvfJooHSj1c831pb1jC0ZMRYjBemLM9crJ0hyHrYAMZ:4h6qMiX/d3gjCoi6q1pbsqna4D43fB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Bandicam Activator/Bin/Activator.exe

Files

Bandicam Activator (2578924721).rar
.rar

Password: 2578924721
Bandicam Activator/Bin/Activator.exe
.exe windows:4 windows x86 arch:x86

Password: 2578924721

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 5KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Bandicam Activator/Source/Activator.dof
Bandicam Activator/Source/Activator.dpr
Bandicam Activator/Source/Blowfish.pas
Bandicam Activator/Source/Compiler.inc
Bandicam Activator/Source/HashUtils.pas
.js
Bandicam Activator/Source/Licensing.pas
Bandicam Activator/Source/MD5.pas
.js
Bandicam Activator/Source/Manifest.manifest
.xml
Bandicam Activator/Source/Resources.rc