31756e654645e0118c3da4f4cb052aad93959297fd0c091912eb251196ebce37 | Triage

Sharing

General

Target

31756e654645e0118c3da4f4cb052aad93959297fd0c091912eb251196ebce37
Size

72KB
MD5

0d79ea6fceb99894a684da1cd423bf3f
SHA1

e8c908844849d849fe0a6ee4c42a64ff1ade636e
SHA256

31756e654645e0118c3da4f4cb052aad93959297fd0c091912eb251196ebce37
SHA512

529a492fe065c8aabc6c68dd113c9253d02f41dff1283322bdc686e5c62cabd9d518d0baac5ccf15d8c064948a75f6ce58bd05d8751db7be0e1f3f2affd5d65b
SSDEEP

1536:x5NM2yKr2LIjufwER69QVFpS/oJoG5rbyeRsE10m7UipOwfS3/Di4Pi/1kyJsOlj:9M2yKr2LIjufwER69QVFpS/oJoG5rby+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
31756e654645e0118c3da4f4cb052aad93959297fd0c091912eb251196ebce37

Files

31756e654645e0118c3da4f4cb052aad93959297fd0c091912eb251196ebce37
.dll windows:4 windows x86 arch:x86

1574b733c8090a65e28b3a1ddb5e9831

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

ucscrt

Comp5_L2ToI32
I32ToUnsignedComp4_L4
Comp5_L4ToI32
IsAllEqual
I32ToUnsignedComp5_L2
Comp4_L2ToI32
I32ToComp4_L4
I32ToUnsignedComp5_L4
IsNumericDisplay
Display_L5ToI32
Comp4_L2ToI64
SetAsciiFlag
CheckVmod
I32ToComp5_L4
GetDLLPtr
I32ToComp4_L2
I32ToDisplayAscii
g_szCurrentModule
IncrementComp4
g_dwCurrentLineNumber

msvcrt

_adjust_fdiv
malloc
_initterm
free

Exports

Exports

FINRVIC0

Sections

.text
Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 776B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ