31dd82cb2e3f610ec93dbfcf4f28a44fc4af29a55e3fff14cac5664e3b3edef2N[.]exe | Triage

Sharing

General

Target

31dd82cb2e3f610ec93dbfcf4f28a44fc4af29a55e3fff14cac5664e3b3edef2N.exe
Size

247KB
MD5

f087898b3683c3261dfd2f506b069dc0
SHA1

088e7074dd5d686fc492d48544238fed85de9a7d
SHA256

31dd82cb2e3f610ec93dbfcf4f28a44fc4af29a55e3fff14cac5664e3b3edef2
SHA512

e8502399ac874dad2155b7234fae985cd71f20fb9b5204e5d86c1c0ddb012b11e1143a6200ea82ecf28fd50b7e2d0ec990054dbe9e8495925bce1ec97fba0854
SSDEEP

6144:RBbhnf6a8Y8dLBf0dJ5TTBZbspom7bXbt:dnia0N0VTTbM/J

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
31dd82cb2e3f610ec93dbfcf4f28a44fc4af29a55e3fff14cac5664e3b3edef2N.exe

Files

31dd82cb2e3f610ec93dbfcf4f28a44fc4af29a55e3fff14cac5664e3b3edef2N.exe
.exe windows:4 windows x86 arch:x86

7c3e5471ef8e7b001d20a5df0ad4ac3d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateProcessA
FindClose
CloseHandle
HeapCreate
GetCurrentDirectoryA
LocalFree
GetComputerNameA
UnmapViewOfFile
LoadLibraryExW
GetCurrentThreadId
GlobalUnlock
SetLastError
GetCommandLineA
CreateFileW
lstrcpyA
FindResourceW
Sleep
lstrlenA
GetModuleHandleA
PulseEvent

user32

CheckRadioButton
IsWindow
DrawMenuBar
DrawEdge
CreateIcon
GetDC
CallWindowProcA
SetFocus
DispatchMessageA
FillRect
GetDlgItem
CreateWindowExA
GetCaretPos

rsaenh

CPSignHash
CPGenKey
CPHashData
CPDecrypt
CPDeriveKey

msasn1

ASN1BERDecEoid

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 43KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 162KB - Virtual size: 164KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE