2b60de83372305e6e7abf549561f3c13 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2b60de83372305e6e7abf549561f3c13
Size

22KB
MD5

2b60de83372305e6e7abf549561f3c13
SHA1

3d28ae5fe16e7094d840594789457a41ccecc00f
SHA256

73f9f73d2e5e408be9811f3a8eb94042c904c42b9a672e48216e04cb5eca1763
SHA512

77b99bac1715eca0d117182d7664bf766c04b5782b0642388fb1222bd8ff8a9bd068abad61b8e802d3848ab3491c12a7b9004aa40ea049127fd0ebf0a856ec0d
SSDEEP

384:1hNriHjMevXCt1QMMMMMMMMMMMN88888QbkOEDd51dg:1hEHjMevy1QMMMMMMMMMMMN88888QAOu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2b60de83372305e6e7abf549561f3c13

Files

2b60de83372305e6e7abf549561f3c13
.exe windows:4 windows x86 arch:x86

e2dbfb268a072b87b41bb9ada4a88512

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
GetVersion
FreeLibrary
GetFileSize
lstrcpyA
GetModuleHandleA
CreateEventA

user32

TranslateMessage
MessageBoxA
GetClientRect
GetWindowRect
DispatchMessageA

gdi32

ExtTextOutA
CreateSolidBrush
PatBlt
MoveToEx
SetROP2
SetBkMode
GetTextMetricsA
CreateFontIndirectA
CreateCompatibleDC
GetDeviceCaps
GetStockObject
SetPixel
GetBkColor
BitBlt
GetPixel
GetObjectA
SelectObject
GetTextExtentPoint32A

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 986B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ