c6da31ad4a5078e5ce2c66330b463030259d5d22dde02f3352800ea7f05433f1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c6da31ad4a5078e5ce2c66330b463030259d5d22dde02f3352800ea7f05433f1
Size

717KB
MD5

b4d56696dad518fc756d01c0d0b0c0cc
SHA1

591a5dc4f2785019301fe6d7b7f2f79e150d9084
SHA256

c6da31ad4a5078e5ce2c66330b463030259d5d22dde02f3352800ea7f05433f1
SHA512

79500ed0110451e54cd9bb939e16d8d3adf1e039f85a6a2a488653cc6442e261d666efad1db2bae159978fdbfa7081bbb17b749e2d7e84daaf6e3b3d0b09aed2
SSDEEP

12288:dazK95SLpFlEssb5c0FTQBm7K7Z2b1xzcjW/K4t6COb54/BtF1V/60unqC:4zKfSlz7yiEQY7Rb1GCDR/zV/60CqC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/ELR-HOI-14-RV-2024-055.scr

Files

c6da31ad4a5078e5ce2c66330b463030259d5d22dde02f3352800ea7f05433f1
.zip
ELR-HOI-14-RV-2024-055.scr
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 700KB - Virtual size: 699KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 190KB - Virtual size: 188KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ