2aab781340b3f8818c5c4ebb6dd80b1c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2aab781340b3f8818c5c4ebb6dd80b1c
Size

16KB
MD5

2aab781340b3f8818c5c4ebb6dd80b1c
SHA1

7fbb943768a94925e7c88d910c6f566a79fdd570
SHA256

dbf71a1bf15f30bf51331974d5a87d24eff18221546a3c81efed8b58364ce1f6
SHA512

3ab3ea7f79c00f130ff1e80c69a5aff8ebd5bee21b42cea49b9cfa06f2780eebf959b03181791def46499e4367f6eacaa0f4ebdfe5006871bdafe323b009fbee
SSDEEP

192:sDL5zdqlhIKha/iI4J6eaRtjL93jp93jqIG2KDXJwj93jJN:sDtdqlhV0/iI4geijp3L3fG2KDiR3FN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2aab781340b3f8818c5c4ebb6dd80b1c

Files

2aab781340b3f8818c5c4ebb6dd80b1c
.exe windows:4 windows x86 arch:x86

728b0f725bdfd4d3181dfb41031ae46a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpyA
GetModuleFileNameA
GetVersion
lstrlenA
lstrcatA
GetModuleHandleA

user32

SetMenuDefaultItem
DefWindowProcA
CheckMenuItem
PostQuitMessage
DestroyMenu
LoadIconA
CreatePopupMenu
TrackPopupMenuEx
GetCursorPos
LoadCursorA
RegisterClassA
CreateWindowExA
IsWindow
GetMessageA
DispatchMessageA
FindWindowA
SetForegroundWindow
AppendMenuA

advapi32

RegDeleteValueA
RegSetValueExA
RegQueryValueExA
RegCloseKey
RegOpenKeyExA

shell32

Shell_NotifyIconA
ShellExecuteA

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ