2850062325efb4a345306f863d41ebec | Triage

Sharing

General

Target

2850062325efb4a345306f863d41ebec
Size

5KB
MD5

2850062325efb4a345306f863d41ebec
SHA1

7e5f37e935070de7cf26af001a84d8bb712c1cf7
SHA256

34f8ebf86ba24691e46e42e38b64fa8bbdeaa2577c837f93b9da3f37c0c2c837
SHA512

f385ede4db03fe83f7db51d6f083e39e40c5d6b90b76200db1b73ab4912d68d934613b8edfbcad06d2ae391e3357796cafb9476f7493dfb8c8211555e40f735a
SSDEEP

96:hX3AI91U9k1lgZ718IwE0gcuuWu6prisVj2JFQEQ:hAA1lXg5uhIH2JFQX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2850062325efb4a345306f863d41ebec

Files

2850062325efb4a345306f863d41ebec
.exe windows:4 windows x86 arch:x86

f098a1c0a9c3651c1599e100873eca52

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_BIND
IMAGE_DLLCHARACTERISTICS_WDM_DRIVER
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeEnvironmentStringsA
GetDriveTypeA
FoldStringA
CopyFileExA
ReadConsoleInputExA
CreateJobObjectA
OpenMutexA
GetPrivateProfileStringW
CreateNamedPipeW
SetConsoleInputExeNameW
GetPrivateProfileSectionNamesA

user32

RegisterDeviceNotificationA
IMPQueryIMEA
GetMenuStringA
SetClassLongA
LoadBitmapA
SendMessageCallbackW
SendIMEMessageExA
GetMonitorInfoW
IsDialogMessageA

gdi32

CreateScalableFontResourceA
GetCharWidth32A
LineDDA

Sections

.code
Size: 2KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 852B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fasm
Size: 1024B - Virtual size: 783B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ