2271b978030228884dc19654ff9a54e3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2271b978030228884dc19654ff9a54e3
Size

744KB
MD5

2271b978030228884dc19654ff9a54e3
SHA1

30f829e342ded37c2ac24bab5ce264e0b6da03e3
SHA256

3e1575b6b0bbc2b135f418956c57a60b54d3dfc67cbc4ee4095359655ae92c8c
SHA512

ed6fa48be74332fa972f07516b159986d54203c254601a71b5ce2df6eaf02a77204132741cfd5657f0a97400bc40c26fb68481ff131a00a82097311c789c9709
SSDEEP

12288:R1GH7OE0u8plb80WwVTnvmUZy5YxT/OLU/Ns5rUked97Lnk3Ov9:YOEEk0WwFvmUBxTrNWrPed9fUc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2271b978030228884dc19654ff9a54e3

Files

2271b978030228884dc19654ff9a54e3
.exe windows:4 windows x86 arch:x86

bc5adf8504cfb350f69a6d12bfe1b3da

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

UnmapViewOfFile
ExitProcess
GetOEMCP
GetModuleHandleA
VirtualProtect
InterlockedExchange
SetEvent
DeleteAtom
CompareFileTime
GetLastError
GetTickCount
GetMailslotInfo
PulseEvent
LoadLibraryW
OpenSemaphoreA
lstrlenA
CloseHandle
GlobalFlags
GetSystemTime
GlobalFree
CreateMutexA

user32

DestroyMenu
PostQuitMessage
UpdateWindow
GetParent
ScrollDC
InsertMenuA
EqualRect
TranslateMessage
InflateRect
GetSubMenu
GetScrollRange
SetWindowPos
GetMenu
GetTitleBarInfo
PostMessageA
EnableScrollBar
GetMenuStringA
GetDlgItem
MessageBoxA
PrintWindow
ShowWindow
DrawFrame
DialogBoxParamA
SetPropA
ModifyMenuA
DispatchMessageA
LoadIconA
GetKeyboardLayout
GetWindowLongA

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ