31afe5ce31cafaad7cda28eb7155dbdcbfb67e326b65ae55ee61c89779cd18fd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

31afe5ce31cafaad7cda28eb7155dbdcbfb67e326b65ae55ee61c89779cd18fd
Size

71KB
MD5

1ea72f1436d0a8d9ef88c948f3f1e465
SHA1

3f5f6eb8d02a345832af81f6fc0daa788e85ee11
SHA256

31afe5ce31cafaad7cda28eb7155dbdcbfb67e326b65ae55ee61c89779cd18fd
SHA512

2322dc2ad7340e3342814976aef1c0c34b5f1f75089df89173e7f6707de6605456fb1483957210d0e58291f027ed83a3f42cd0ff14067c671e249b18451e6090
SSDEEP

1536:UPAyblqKb5YNIOVbcf6Ck2p+bL/4XjBbBrO1bteQTvW3wWUT6mk:UP+0G6Pk2sbLAzFBSbteqW3wWo6mk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
31afe5ce31cafaad7cda28eb7155dbdcbfb67e326b65ae55ee61c89779cd18fd

Files

31afe5ce31cafaad7cda28eb7155dbdcbfb67e326b65ae55ee61c89779cd18fd
.exe windows:4 windows x86 arch:x86

16007b99b0bc249eb7ea1abdacc541f5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProfileIntW
SetConsoleInputExeNameA
SetTimeZoneInformation
IsValidCalDateTime
WerpGetDebugger
WerpNotifyUseStringResourceWorker
WriteConsoleOutputCharacterA
lstrlen
CreateHardLinkTransactedA
AddDllDirectory

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 56KB - Virtual size: 94KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE