02958299[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

02958299.exe
Size

436KB
MD5

54f522c9cadc062acb86db094434654f
SHA1

60048334463160f95586faae4fff63a13f9c46e3
SHA256

74a9a26d3f9b021f7f08c77b4a7b1cc002c97b1f279312347addc5d8c40c121c
SHA512

b378b6892ded60bb36b944a32e0722d5396dd0373ceae17ff7a2e63b3ebd42f4e930ca83cc78813bf670b5e15cb51c1aef0259d703608666fd7d84dcb7cc9308
SSDEEP

12288:tXsOm4Y+YPYiB4xxxJYtuD7nk79X1AG7Y:pFm4Y+YAiBQmuEAG7Y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
02958299.exe

Files

02958299.exe
.exe windows x86

117f9d3fb0575ebe74d4f4c45094337a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentDirectoryA
GlobalAlloc
GlobalFree
FindFirstFileA
FindNextFileA
ExitProcess
CreateFileA
WriteFile
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
GetModuleFileNameA
GetModuleHandleA
CloseHandle
GetFileSize
GetLocalTime
Sleep
DeleteFileA

shell32

ShellExecuteA

user32

GetDesktopWindow
GetWindowDC
LoadBitmapA

gdi32

BitBlt
TextOutA
SelectObject
SetBkColor
SetTextColor
CreateCompatibleDC

Sections

.data
Size: 512B - Virtual size: 421B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.code
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 850B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 432KB - Virtual size: 432KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ