2b28c9f26f7c5d1ddfed14e8d20ecac5

Sharing

Copy URL

Twitter E-mail

General

Target

2b28c9f26f7c5d1ddfed14e8d20ecac5
Size

346KB
MD5

2b28c9f26f7c5d1ddfed14e8d20ecac5
SHA1

adcd0cfa08912472cd984a35f135d589567d1291
SHA256

e702a1025388afa1081600945e05409f897ea3cea41e1d5ec1e5e17783f746f8
SHA512

1938003c01f52a7076ea1032bb2a2e41e7b211e8422662e61f4b2e44c071b5e06996dd6607692dc35e1e31a0a5fef9df9b3fc4c5543f4547fcd71caa7de438c6
SSDEEP

6144:KKucm9Bv8fa91cHA1zbTKuU8GS217PYleMYLeX0u3+9Cm/IAIxogUo5MRa6IxL7v:K5cM8fGWw/TKuU8G7PYlhaAF7TrxxLjf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2b28c9f26f7c5d1ddfed14e8d20ecac5

Files

2b28c9f26f7c5d1ddfed14e8d20ecac5
.exe windows:1 windows x86 arch:x86

ca61c78c90a2f8449d6b0001799b91b7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProfileIntA
VirtualAlloc
GetDevicePowerState
GetSystemTimeAsFileTime
GetDateFormatW
ReadConsoleA
SetFileAttributesW
MoveFileW
BaseUpdateAppcompatCache
GetProcessWorkingSetSize
WriteFileGather
ExitProcess
lstrcpynW
UnmapViewOfFile
GetLastError
UTUnRegister
SetTapeParameters
SetStdHandle

adsldpc

PathName
IsGCNamespace
LdapMemFree
ReadPagingSupportedAttr
LdapTypeFreeLdapObjects
ADSISetObjectAttributes
ADSICloseSearchHandle
ADsCreateDSObjectExt
ADSICloseDSObject
SchemaClose
ADsWriteAttributeDefinition
LdapAddS
ADsEncodeBinaryData
LdapcSetStickyServer

setupapi

IsUserAdmin
CM_Query_And_Remove_SubTreeA
SetupDiDestroyDriverInfoList
SetupDiCreateDeviceInfoA
CMP_Init_Detection
CM_Get_First_Log_Conf_Ex
CM_Get_Child_Ex
SetupDiSelectDevice
SetupDiOpenClassRegKey
SetupDiClassGuidsFromNameExA
SetupDecompressOrCopyFileA
SetupDeleteErrorA

wshcon

DLLGetDocumentation
DllUnregisterServer
DllCanUnloadNow
DllRegisterServer
DllGetClassObject

user32

GetWindowDC
GetParent
GetMenu

opengl32

glMapGrid2d
glColor4uiv
glLineStipple
glPushMatrix
glPolygonOffset
wglDescribePixelFormat
glVertex4d
glRenderMode
glEnd
glLightfv
glAreTexturesResident
glTexCoord3iv
glEvalPoint2
glVertex2d
glTexCoord1fv

Sections

.text
Size: 207KB - Virtual size: 206KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idat_59
Size: 122KB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 322B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ca61c78c90a2f8449d6b0001799b91b7

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

adsldpc

setupapi

wshcon

user32

opengl32

Sections

.text Size: 207KB - Virtual size: 206KB

.rdata Size: 80KB - Virtual size: 80KB

.idat_59 Size: 122KB - Virtual size: 1.6MB

.rsrc Size: 5KB - Virtual size: 4KB

.reloc Size: 512B - Virtual size: 322B

.text
Size: 207KB - Virtual size: 206KB

.rdata
Size: 80KB - Virtual size: 80KB

.idat_59
Size: 122KB - Virtual size: 1.6MB

.rsrc
Size: 5KB - Virtual size: 4KB

.reloc
Size: 512B - Virtual size: 322B