2c437b5daca77c4bd0b6f1918f318ab2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2c437b5daca77c4bd0b6f1918f318ab2
Size

42KB
MD5

2c437b5daca77c4bd0b6f1918f318ab2
SHA1

c5221be0db988fd54ca05609176ebe323d176f76
SHA256

7bf8f4757490afc50ddb9b59f21b0a6ac5ea1d514a8b8378d9db07ec8568696b
SHA512

ff9ae8e8c582a48ec588127e7e858eb88c14f3c892e8b3157f075af4e2b02ea547655afe1473479ce0c1fc6239519af27ab9f044e4b42cfaa4c4caf9cdc75118
SSDEEP

768:b/S7UbpMjRZoWC9HqZKUUbD5mS70F2VIm7YEkI1d+q6ewKwUalH58NGs8a/N:baUbpmZoW4AQMSAF2Wcik6pUau8a/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2c437b5daca77c4bd0b6f1918f318ab2

Files

2c437b5daca77c4bd0b6f1918f318ab2
.exe windows:4 windows x86 arch:x86

3d118b82c475e1ef04b732b5bca745b6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetModuleHandleA
ExitProcess
LoadLibraryA
CreateThread
ExitThread
VirtualAlloc
Sleep
CloseHandle
GetLastError

user32

CreateWindowExA
GetKeyboardType
MessageBoxA
GetSysColor
CharToOemA

gdi32

CreatePen
GetPixel

Sections

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 5KB - Virtual size: 190KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

WinLicen
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE