0031e897cd464612b06acff283e06b36 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0031e897cd464612b06acff283e06b36
Size

61KB
MD5

0031e897cd464612b06acff283e06b36
SHA1

81ce916358e85ed756efe1d342620e7662f1912b
SHA256

e6511be7634ebe24b92463ab567f993cad0bdfba4046b7d2130be9019c3b1169
SHA512

9873593e994ee772361094dca737d014445f95d9658b36cfb9f9f6400d070a3d385aabda336b1d7215fd85c3db6518c146074b1904526194a555ca81694b8eae
SSDEEP

1536:cuvR2oU6MXfgBWKrq4S4ddkltDEKOYGxdZD9IrBRYoYxL8is3XJg:JvR2xvgBWKrzCtqYGxdZD6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0031e897cd464612b06acff283e06b36

Files

0031e897cd464612b06acff283e06b36
.exe windows:4 windows x86 arch:x86

f118e65e9b5b2fdfd3e6d11f688405fe

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CreateFontA

comctl32

InitCommonControls

shell32

ShellExecuteA
SHGetPathFromIDListA
SHBrowseForFolderA

advapi32

RegCloseKey
RegCreateKeyA
RegSetValueExA

user32

LoadCursorA
SendMessageA
SetDlgItemTextA
SetWindowTextA
LoadIconA
SendDlgItemMessageA
DialogBoxParamA
EndDialog
GetDlgItemTextA

kernel32

SetThreadPriority
Sleep
ResumeThread
ExitThread
CreateThread
lstrlenA
UnmapViewOfFile
SizeofResource
MapViewOfFile
LockResource
LoadResource
CloseHandle
CreateFileA
CreateFileMappingA
ExitProcess
FindResourceA
GetFileSize
GetModuleHandleA
GetTickCount
GlobalAlloc
GlobalFree
SuspendThread

winmm

waveOutWrite
waveOutUnprepareHeader
waveOutReset
waveOutPrepareHeader
waveOutPause
waveOutOpen
waveOutGetPosition
waveOutClose
waveOutRestart

Sections

.text
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE