2d9da06fabc67883b3092be9253bf211 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2d9da06fabc67883b3092be9253bf211
Size

163KB
MD5

2d9da06fabc67883b3092be9253bf211
SHA1

aa2cf7b031e9487890891f83d40c760300de8faa
SHA256

6ba30e64ca284b95a2c1fad88c6d169940d4fe073d27f5e19d97bd3c6e2496de
SHA512

65fb0b6275bf42ae192c0284d63031e1e661c46c5a6da624793cbd4565ff52329370be1bb7b6f8de3d21362c7af6eeb886f5cf3513872f54037fb665de205c7c
SSDEEP

1536:UCmL92cWZLzrLyfOsZcE6erMOVsj1ft6Nduod3os/1XzpsfRVbEvycS:9mL8c6nLMDZcewTeNTd4s/JzpsfRZI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2d9da06fabc67883b3092be9253bf211

Files

2d9da06fabc67883b3092be9253bf211
.exe windows:5 windows x86 arch:x86

cf99ffbe97b5dd059430afdbeaecdf3c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegOpenKeyA
RegDeleteKeyW

kernel32

ExitProcess

user32

CloseWindow
GetCursor

Sections

.nica
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.mejbd
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nadh
Size: 122KB - Virtual size: 417KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.jpklj
Size: 512B - Virtual size: 257B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.phfle
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ