2b1fc0f962e0662da0b18adb45d6638d | Triage

Sharing

General

Target

2b1fc0f962e0662da0b18adb45d6638d
Size

329KB
MD5

2b1fc0f962e0662da0b18adb45d6638d
SHA1

36433826640660be11ca64fde9ad611bd1cc8a21
SHA256

b6de7e791c95b889f0a3851aefb63f15ca3c0089ee2d45fa5e065df650204871
SHA512

454f045543429b0edc475dffb476618a17006433f35765f1327a577cdf70d34b0759d3611e2c93d1ba5f74b8d0370644c6465f2b53025edb7039f0895647ec8a
SSDEEP

6144:17t0iB8aXLEdgRwshPHsG/7TIKm2OKXlmL0eOmPehGiD+tVJMWIc9:H0iBl0mNTTY25ognmmhsV+WJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2b1fc0f962e0662da0b18adb45d6638d

Files

2b1fc0f962e0662da0b18adb45d6638d
.exe windows:4 windows x86 arch:x86

e775b008c9edcaa96af244da8790fb57

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalFree
CreateMutexA
InterlockedExchange
HeapDestroy
SetConsoleIcon
CloseHandle
GetTickCount
SetEvent
SetConsoleMode
VirtualProtect
OpenSemaphoreA
ExitProcess
FindVolumeClose
LoadLibraryW
SetConsoleTitleA
GetLastError
GetLogicalDrives
GlobalLock
ReleaseMutex
GetModuleHandleA
UnmapViewOfFile

user32

DispatchMessageA
GetScrollRange
GetMenuStringA
PostQuitMessage
TranslateMessage
ShowWindow
MessageBoxA
GetWindowLongA
DestroyMenu
PostMessageA
LoadIconA
EnableScrollBar
SetPropA
EqualRect
DialogBoxParamA
DrawFrame
ModifyMenuA
InsertMenuA
GetDlgItem
UpdateWindow
GetSubMenu
InflateRect
GetKeyboardLayout
PrintWindow
GetMenu
GetParent
SetWindowPos
GetTitleBarInfo
ScrollDC

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ