05116135136da30f893fad3414500f70 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

05116135136da30f893fad3414500f70
Size

154KB
MD5

05116135136da30f893fad3414500f70
SHA1

b2688c39f970aef14f13d2eadeb7cd678672571a
SHA256

e4d4e298bbe074e99e600e606e05befa870999c73f4b9b378fe06920461a66be
SHA512

395aa8a460598a0b4ae7f8040c43018ff8b84b602b5fe05021efdd02693dc2c26e0c1feca7e13dfed6239bd882433738e42dabd605b62603548dc00e58116168
SSDEEP

3072:OSorcSzYoS5hDkpGVHAcGHcU/wGm4a61osKzj1g6GN45K3:Qrcrjk6gcGHcbS91XSjK45K3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
05116135136da30f893fad3414500f70

Files

05116135136da30f893fad3414500f70
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

e5ruse1

Sections

CODE
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 137KB - Virtual size: 137KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 277B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 982B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 67B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 408B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ