2a362e0a0c461db4f59bb58ac4683164 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2a362e0a0c461db4f59bb58ac4683164
Size

26KB
MD5

2a362e0a0c461db4f59bb58ac4683164
SHA1

bbec0e89f0a4e3ec48b14c88ffbf31760bd7a337
SHA256

8f4935a44cedcebf21f5a3e44a864c83ec25e846951476e8c2ff820585acc31b
SHA512

9b64360ac2e59ff7b4de6c791b35f5a55c9578bf16c0dc4552b62223cc50d78bc1e82ac148c6d3a458de5e72989e6687c58515a01251e01c4666783c1a85eab6
SSDEEP

384:zccccccccccccccccccccccccccccccccccccccccccccccccccccccccccccccz:T7UTyiWyYpxMd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2a362e0a0c461db4f59bb58ac4683164

Files

2a362e0a0c461db4f59bb58ac4683164
.exe windows:4 windows x86 arch:x86

b856ef46a759cd45a26486d754ab0b6a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
CloseHandle
GetModuleHandleA
GlobalAlloc
LocalFree
GetCommandLineA
lstrlenA
GetLastError
GetStdHandle
lstrcpyA
lstrcatA
Sleep
GetStartupInfoA
GetTickCount

user32

GetMessageA
DestroyWindow
DialogBoxParamA
DispatchMessageA
SetWindowTextA
GetClientRect
PostQuitMessage
GetWindowRect
LoadIconA
DefWindowProcA
MessageBoxA

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 987B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ