2862db0b5ac7f8d20b78942af1bc90f2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2862db0b5ac7f8d20b78942af1bc90f2
Size

9KB
MD5

2862db0b5ac7f8d20b78942af1bc90f2
SHA1

6df2bb332997f316a86f1b026a6e05593fc26528
SHA256

d54100a68557a27f99e86b64c467bf07447e6faa62181aa9db4169a79a3ff5ab
SHA512

c60b4cf472c0eddb8e8edd78e4cc1b51ab31a1aea06c0c2988276817b6af1371d74318b44c01568aa0c957731420f163009bd02ca4686cd87565fa4cf9e6469f
SSDEEP

192:2IUO9V9e9KDS4V334Wbz/OMoXJyR90omL90mYqPmUim3qY:rUObKKDp3nDS4e9L903qPq0q

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2862db0b5ac7f8d20b78942af1bc90f2

Files

2862db0b5ac7f8d20b78942af1bc90f2
.exe windows:4 windows x86 arch:x86

2b94ea1d4ab3d26853a9bd51961934b5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

AllocConsole
CancelDeviceWakeupRequest
ConvertThreadToFiber
CreateRemoteThread
EnumDateFormatsA
ExitProcess
FindFirstFileExA
GetCommMask
GetComputerNameW
GetCurrencyFormatA
GetDiskFreeSpaceA
GetPrivateProfileStructW
GetTapeParameters
GetThreadSelectorEntry
GlobalFix
InterlockedDecrement
IsDebuggerPresent
SetSystemTime
SetThreadIdealProcessor
SetThreadPriorityBoost
SetTimeZoneInformation
UnlockFile

user32

ChangeDisplaySettingsExA
CharToOemBuffA
CloseWindowStation
CreateDesktopW
CreateMDIWindowW
DestroyMenu
DlgDirSelectExA
FrameRect
GetAltTabInfo
GetMenuCheckMarkDimensions
GetMenuItemCount
GetMenuItemID
IsChild
IsClipboardFormatAvailable
LoadBitmapA
ModifyMenuW
RegisterDeviceNotificationW
SendMessageTimeoutA
SetCaretPos
SetDeskWallpaper
SetWindowLongW

gdi32

AnimatePalette
CloseMetaFile
CreateCompatibleDC
CreateFontIndirectW
CreateICA
EnumFontsA
EqualRgn
GetFontLanguageInfo
GetRegionData
GetTextExtentPointW
GetWorldTransform
OffsetViewportOrgEx
PolyPolygon
PolyTextOutA
Polygon
PolylineTo
SelectPalette
SetMetaRgn
SetTextAlign
SetViewportOrgEx
TranslateCharsetInfo

Sections

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE