113dfcf31b79bdf8bfdeb81a654070e2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

113dfcf31b79bdf8bfdeb81a654070e2
Size

59KB
MD5

113dfcf31b79bdf8bfdeb81a654070e2
SHA1

6d08d3a8e65f63e57f77325708f9680f13a09b3f
SHA256

6eb9201f57a3c9d057b602f355a594217ad934b9f393b09985885706e6387e77
SHA512

b21594cca012851eb9609a46086f9591e67022e383b3499b47fcde388e31c6f325d0fbcea388d95f9f54b3ef72c7704a3b9a8506907ab6668b8558fa2bd53bc5
SSDEEP

768:hHqz4XsbDUUy0mJFkS8LxFSgQIa8NPtO3j3ogMSsvLODAr:E5bQz0/asP6zn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
113dfcf31b79bdf8bfdeb81a654070e2

Files

113dfcf31b79bdf8bfdeb81a654070e2
.exe windows:38049 windows x86 arch:x86

7a7803027531302026dedc7b5f6025f2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetProcAddress

Sections

aiyyrjbi
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

jirbayqa
Size: 54KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

jyyjaryj
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

qqaybzaa
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ