e31e2ca2fb7ecefef6fe56458939c779c6391707a7089c24672c4a84a32d07db | Triage

Sharing

General

Target

e31e2ca2fb7ecefef6fe56458939c779c6391707a7089c24672c4a84a32d07db
Size

56KB
MD5

3205e989ac0ea0239dcde7ff4db92700
SHA1

896496935cc6f268813a3e9e33160c8ad52c41a1
SHA256

e31e2ca2fb7ecefef6fe56458939c779c6391707a7089c24672c4a84a32d07db
SHA512

7c6ac743ed3706747878a887d6baa6fab652a59375fed866a3aed1205b0bd21491a7b9bd6ac694745f2bb468a3e37e695614a65b23dc36006bd63287c447e15a
SSDEEP

1536:b0Brb8fFqgj5DVtUylgC2QckuxozgWy6tzjSic2:bCJgj5DVO/COkus9Jc2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e31e2ca2fb7ecefef6fe56458939c779c6391707a7089c24672c4a84a32d07db

Files

e31e2ca2fb7ecefef6fe56458939c779c6391707a7089c24672c4a84a32d07db
.exe windows:4 windows x86 arch:x86

2ac7c1a601fe3c3dfe5744b6f02c0e4b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProfileStringW
EnumResourceLanguagesExW
AddAtomW
K32GetMappedFileNameA
SwitchToThread
GetConsoleTitleA
OpenConsoleWStub
SetFileBandwidthReservation
CreateHardLinkA
LeaveCriticalSectionWhenCallbackReturns

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE