102b1ee3feadbe53a9ace80dc8a4e9b0N[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

102b1ee3feadbe53a9ace80dc8a4e9b0N.exe
Size

76KB
MD5

102b1ee3feadbe53a9ace80dc8a4e9b0
SHA1

5f67d49e4cafcb75064ee6646b3b41b40ded54b5
SHA256

ae3c283e4c11ed6825c3184d13bc0c22302b65038c95dbd5b4010bbc62565f61
SHA512

4313890d2d2bcef798624c471d41e2de9979598a99c7d20a9ffa82b940dcb8829efb01f88e055fb461360174b422e74ceb16d00cb3b0564346b5a2187bf087b2
SSDEEP

1536:wZZZZgEF7l6ucCuR7pnVjmN5yrXbspTI7u+uljeyMyNCudKRpjVrs2ryrd1vUQuP:wZZZZgpaG7p8NorXQrjrNC0KRHs2qo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
102b1ee3feadbe53a9ace80dc8a4e9b0N.exe

Files

102b1ee3feadbe53a9ace80dc8a4e9b0N.exe
.exe windows:4 windows x86 arch:x86

b1b24ed6d931ec706e5c5b796aae6165

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLinguistLangSize
ChangeTimerQueueTimer
FatalExit
HeapFree
IsBadWritePtr
DebugActiveProcessStop
GetHandleInformation
DeleteFiber
IsBadStringPtrA
LockResource
GetCurrentDirectoryA
GetEnvironmentVariableA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE