c3bb1a07ba7b6d3553abf6d8f208d989 | Triage

Sharing

General

Target

c3bb1a07ba7b6d3553abf6d8f208d989
Size

721KB
MD5

c3bb1a07ba7b6d3553abf6d8f208d989
SHA1

defee59fe147544e83407bce9e80953af3e88da1
SHA256

1ba29fc52021e9c93b7085437a1acb80a35ebbf9f695761b4c4cc782900c6ae5
SHA512

a7f31157d9776432f7fa1b9b307bd3ca6152ba4f8723189c1a96b546b81d05b28c7df3ac924866e41d6835d3184ae1d5b06f93d3aaa83028b32fbf1a730a2e53
SSDEEP

12288:0CalX35TopEwX831Vn9IgZ+WXKT36/9ZwJmywJCNiWnr6R8T1:ulXKXS1Vn9xKTc9T3JGiqKC1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c3bb1a07ba7b6d3553abf6d8f208d989

Files

c3bb1a07ba7b6d3553abf6d8f208d989
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\Documents and Settings\Sunitha\My Documents\Visual Studio Projects\EasyInfo\Layer - Presentation (GUI2 - MFC)\Release\Layer - Presentation (GUI2 - MFC).pdb

Sections

.text
Size: 336KB - Virtual size: 334KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 112KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 12KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.uro
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE