2c9b22c1d24b40100c5d3bf11749f047 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2c9b22c1d24b40100c5d3bf11749f047
Size

180KB
MD5

2c9b22c1d24b40100c5d3bf11749f047
SHA1

b09584a4230aa3f4b316074ce878a875d0929c54
SHA256

8ef32034929aaae93eae3c1d35d5d9ba57a6377392d06d412e0aacef16814cc1
SHA512

70906c30c65bbeb5d47fde257ebeaeba45e8056abadc7a688507d3e15bba10f444922ac2fbc9e705105c05bc849adda66c874c9f207a6bbaf7b5be198c91480f
SSDEEP

3072:A23U9qxthqO91h2PkJ8F8VoNClexT+QDg:F3rthqO8P28w4+QD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2c9b22c1d24b40100c5d3bf11749f047

Files

2c9b22c1d24b40100c5d3bf11749f047
.exe windows:5 windows x86 arch:x86

7d10bf9399e5066e75281ec038e35f75

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalFree
ReadFile
FormatMessageA
CreateDirectoryA
lstrcatA
CopyFileA
GetLocalTime
FlushFileBuffers
GetFileTime
HeapFree
CopyFileExA
WriteFile
OpenFile
FreeResource
lstrlenA
FindClose
GetStdHandle
ExitProcess
GetLastError
GetCommandLineA
GetFileType
GetCPInfo
CompareStringA

advapi32

RegQueryInfoKeyA
RegCreateKeyA
RegOpenKeyExA
RegDeleteKeyA
RegOpenKeyExW

user32

CloseWindow
IsMenu
DrawIcon
GetDC
BeginPaint
CopyIcon
LoadCursorA

Sections

.a4fd0
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.0506
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.cfe4h
Size: 117KB - Virtual size: 445KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.cc86
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.19a2
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE