21psd[.]psd | Triage

Resubmissions

13-07-2023 14:58

230713-scbv1aaa6t 10

30-06-2023 14:28

230630-rs6vmsdd84 10

Sharing

General

Target

21psd.psd
Size

214KB
MD5

dd02e9fe9baf3f3ec6a70497a63face1
SHA1

a3ca2d93ba6ae5bf652c0e0268734000208e8d65
SHA256

0bd6894c52fd77e1e13de3c97cb9b79757c73d1441f2bee852d6af9e954e3b59
SHA512

cffe879f3c57cae85049d9836e15ed3e03246b33d88ec332707ec82157f2be4e804625eae8c4c6a2472fe72bc4ed82191e8c5bfb4420e704aca7b3543c164db7
SSDEEP

6144:MdtJ9rtpMBa7CSqNF2+Nlu/of4jHwr68M:Md1rMBgCSqY+Nloof4Hw2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
21psd.psd

Files

21psd.psd
.exe windows x86

9990c6c807d852128b82fa11e2f6badc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleW
LoadLibraryA
GetProcAddress
GetLastError
CreateFileW

user32

LoadCursorFromFileA
CharLowerW
GetLastActivePopup
LoadCursorA

gdi32

GetEnhMetaFileBits

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data2
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 208KB - Virtual size: 207KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE