2d107a14c11e1e664f3ff6f6f55874f9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2d107a14c11e1e664f3ff6f6f55874f9
Size

6KB
MD5

2d107a14c11e1e664f3ff6f6f55874f9
SHA1

27f38f9863e8a7e3aba0054217751c6edc20a960
SHA256

73f76703cec045f69a1a55bc6c404ccd5cb07ee7d1d7e4c93ee65f4778a070d0
SHA512

6b620d81e91da99f7c74f996598e113015d5dd42ae0bb74d6ff708d8b10f4e9d1c1f742045909813f786048d688a810a7f3c73b3cb8a5dd6cdb2b4aab63f6868
SSDEEP

192:lrLOh88duMEe5c7ruewV2T+VMfShuogWaiGRS:VLP8duMEoc7ruefSxgwG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2d107a14c11e1e664f3ff6f6f55874f9

Files

2d107a14c11e1e664f3ff6f6f55874f9
.exe windows:4 windows x86 arch:x86

b92dfa0341177c7237781a7622be4126

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetPrivateProfileStringA
GetPrivateProfileIntA
GetCurrentDirectoryA
CopyFileA

msvcrt

fgetc
fwrite
fputc
ftell
fseek
strstr
_mkdir
sprintf
strrchr
strncpy
fclose
fopen
printf
_exit
_XcptFilter
exit
__p___initenv
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 742B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE