42ed90d4a3636dd6e16c6a0d7a282860N[.]exe | Triage

Sharing

General

Target

42ed90d4a3636dd6e16c6a0d7a282860N.exe
Size

2.4MB
MD5

42ed90d4a3636dd6e16c6a0d7a282860
SHA1

dba14b84780481bf152d152f8815fe7206e75ad7
SHA256

30ef2a9e9da5f5ef79c677496a196a5b8cf2e5291c1facb526f1f407de4af272
SHA512

02bcda107c32e3f20d97e761e2abe40eaa29767d12993d2da00c007fb4b1c0445647dd78a96e0878bc7ab15115eb64159ec08978d649cd038241c8fa8b152fb0
SSDEEP

49152:WW5CN8Q0+KcbV6CRa+IymgQp6UW0JGj0tFU8P3+/Tempa6s:WW4NVKcbACM+9JMtgj4Um3+/TN46s

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
42ed90d4a3636dd6e16c6a0d7a282860N.exe

Files

42ed90d4a3636dd6e16c6a0d7a282860N.exe
.dll windows:5 windows x86 arch:x86

10b7fd38d9d547581ef012260c6b5d70

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetFileSize
GetModuleFileNameW
GetBinaryTypeW
LoadLibraryExA
GetModuleHandleA
OutputDebugStringA
QueryPerformanceCounter

Exports

Exports

HwhetfdjeteEluewf

Sections

.text
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.EXP
Size: 4KB - Virtual size: 86B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 765B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ