5bbffb3fc5d31a0dd2813392745bb72f[.]exe | Triage

Sharing

General

Target

5bbffb3fc5d31a0dd2813392745bb72f.exe
Size

319KB
MD5

5bbffb3fc5d31a0dd2813392745bb72f
SHA1

04db94600cee4ad49f2e4554275d057be68bf898
SHA256

d11c99e9343acbbfd158099ae65ecf9b5433d231fa4c7b2bd9f951015ab01025
SHA512

35131dfb2ddc809efb8fe69ada3440780114a226dda0aa287439f160f97d73c0716afd03236991f713ce4dc1b7b679a086ee29d3c46e1fb47f43d0bc9f53accb
SSDEEP

6144:SHHX0fak9RN4OqyJKHfXbJ22ZkNr0ypGNc2YkOidVEfnNcA9GPd:1H4Oqye8fNYyQ+YAfNcA9GV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
5bbffb3fc5d31a0dd2813392745bb72f.exe

Files

5bbffb3fc5d31a0dd2813392745bb72f.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 277KB - Virtual size: 277KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 41KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ