02931cdec8b3c32f6c330e4e8a613064 | Triage

Sharing

General

Target

02931cdec8b3c32f6c330e4e8a613064
Size

165KB
MD5

02931cdec8b3c32f6c330e4e8a613064
SHA1

c75cd0ce9762a523dce705e987700c0401dd124d
SHA256

02774e952f5728fbe13c44ee150a4725329c4d342d475564b7137b189baa64ca
SHA512

caa47aa0aae48be6f22dd5494d2291f661161872a4ba50a0e6e83a08d2820230299350b192c2fa3d1688fb7bf7143dee980c8898074873f8381a3fa3ee1aef40
SSDEEP

3072:hUMC4K5pHTm9k83wMH9Fev9/8K1GPaq6ovsAqrrkJqbv5jvqb4FZ:44K5pi9FwVcPUXkJqV7qA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
02931cdec8b3c32f6c330e4e8a613064

Files

02931cdec8b3c32f6c330e4e8a613064
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.f$mkg3
Size: 1KB - Virtual size: 93KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dencg$
Size: - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.$3dl8d
Size: - Virtual size: 2KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.z$uu2j
Size: - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.qds5el
Size: - Virtual size: 48B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.cxzg9u
Size: - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.e9stam
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.adata
Size: - Virtual size: 3.0MB

.info
Size: - Virtual size: 440KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 161KB - Virtual size: 164KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE