2b6b07cb338b6acff9f5d404b606a717

General

Target

2b6b07cb338b6acff9f5d404b606a717
Size

3.4MB
MD5

2b6b07cb338b6acff9f5d404b606a717
SHA1

1a355284d2f6e785d212096300fcef3bfb4c2c8e
SHA256

0bc01373f837bed968a245862c690f68852438e72e1aeb849c8ab485cf03267d
SHA512

618b20f7adc5082115af224e2b71f8343cd0e5fd674ae6f3c730eca79c5dd47949fae6aab74b95f349ec3aead17c868e798bf16123a6fe81d0287b30f932b306
SSDEEP

98304:aEyfm8hry+73JaaOQi9lu4KuBj0FojH9rOcEst:pyfXvDgaHi9luxu2MdA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2b6b07cb338b6acff9f5d404b606a717

Files

2b6b07cb338b6acff9f5d404b606a717
.exe windows:4 windows x86 arch:x86

a18a739f75e7a4acd2dbfbc767da44a0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
QueryPerformanceCounter
GetProcAddress
CloseHandle
TerminateProcess
Sleep
HeapFree
WriteFile
WaitForSingleObject
CreateFileW
ReadFile
RaiseException
GetACP
GetFileType
CreateEventW
HeapSetInformation
HeapSize
GetCPInfo
GetFileAttributesW
CompareStringW
GetStringTypeW
GetOEMCP
FreeEnvironmentStringsW
IsValidCodePage
GetConsoleCP
LocalAlloc
DecodePointer
ResetEvent
GetVersionExW
ReleaseMutex
CreateFileA
OutputDebugStringW
GetFileSize
VirtualFree
LoadLibraryA
GetModuleHandleExW
CreateDirectoryW
GetFullPathNameW
LoadResource
UnmapViewOfFile
ExpandEnvironmentStringsW

user32

TranslateMessage
ShowWindow
DestroyWindow
DefWindowProcW
CreateWindowExW
SetWindowLongW
GetWindowLongW
GetMessageW
GetDlgItem
GetSystemMetrics
PostMessageW
EnableWindow
IsWindow
GetParent
EndDialog
LoadIconW
SetFocus
SetForegroundWindow
BeginPaint
ScreenToClient
KillTimer
InvalidateRect
EnableMenuItem
GetWindow
GetWindowTextW
GetKeyState
MessageBoxA
CharUpperW

Sections

.rdata
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 612KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a18a739f75e7a4acd2dbfbc767da44a0

Headers

File Characteristics

Imports

kernel32

user32

Sections

.rdata Size: 3.4MB - Virtual size: 3.4MB

.idata Size: 2KB - Virtual size: 1KB

.data Size: - Virtual size: 612KB

.text Size: 6KB - Virtual size: 6KB

.rdata
Size: 3.4MB - Virtual size: 3.4MB

.idata
Size: 2KB - Virtual size: 1KB

.data
Size: - Virtual size: 612KB

.text
Size: 6KB - Virtual size: 6KB