e910e12c25eea053b978085de0065150N[.]exe | Triage

Sharing

General

Target

e910e12c25eea053b978085de0065150N.exe
Size

37KB
MD5

e910e12c25eea053b978085de0065150
SHA1

f7c6c1e78cc35981023249ff2c95f64e5a4f0b2e
SHA256

961e17d596e7416bbc420c883a0663c4d6f1b4eaecec0714f5708215480e4a31
SHA512

27f463d34b82f0141e432201c16d3eae49d3c8cd5a1728be8dd223490ee19c396f2d81bbc5a60db9506d4951e53ed20142511deac518d442cab2955fad78dde2
SSDEEP

192:YFZhR6/YU2B8K1BlAE2mSu/4Sxqpgqk8WkfNWD:EZhEeB8K1exuw1gGWkfNWD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e910e12c25eea053b978085de0065150N.exe

Files

e910e12c25eea053b978085de0065150N.exe
.exe windows:6 windows x86 arch:x86

dfc9ea669d80376513fdf46a5d41f850

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

verclsid.pdb

Imports

kernel32

ExitProcess
TerminateProcess
GetCurrentProcess
HeapSetInformation
SetErrorMode
GetCommandLineW
DelayLoadFailureHook
GetProcAddress
GetLastError
FreeLibrary
InterlockedCompareExchange
LoadLibraryExA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
GetModuleHandleA
SetUnhandledExceptionFilter
GetStartupInfoW
Sleep
InterlockedExchange
UnhandledExceptionFilter

msvcrt

__p__fmode
__p__commode
_except_handler4_common
?terminate@@YAXXZ
_controlfp
_snwscanf_s
__wgetmainargs
_cexit
__set_app_type
_exit
__setusermatherr
_amsg_exit
_initterm
_wcmdln
exit
_XcptFilter

ole32

CoCreateInstance
CoUninitialize
CLSIDFromString
CoInitializeEx

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 944B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 27KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE