bdcf554198a5dc7d2367103854d9ab0088302d7a3d60b9b71a4882afb537b7b2[.]exe | Triage

Sharing

General

Target

bdcf554198a5dc7d2367103854d9ab0088302d7a3d60b9b71a4882afb537b7b2.exe
Size

1.8MB
MD5

7d73c981878c3890d5b2c4e402bbd8dc
SHA1

f9e3b3d0b36c110fa480f30cc4884afbe647e58a
SHA256

bdcf554198a5dc7d2367103854d9ab0088302d7a3d60b9b71a4882afb537b7b2
SHA512

86f215c68b3597a3c35872f6aa9868f49cb2f115639146042d79c67a70722f3c9f2b33a4677dcff2c14ba9d3593f1e1bb872be8f80c1eeeb58df74a1cd93cfd8
SSDEEP

49152:z/hxpLhalOwRidDm8hPNStLljEKVChQ0iQS63a+SD:zXp8lHwDthP+LljTr0iw3O

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bdcf554198a5dc7d2367103854d9ab0088302d7a3d60b9b71a4882afb537b7b2.exe

Files

bdcf554198a5dc7d2367103854d9ab0088302d7a3d60b9b71a4882afb537b7b2.exe
.exe windows:6 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 162KB - Virtual size: 348KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 428B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

fidabisf
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rkvjolmn
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE