2b8e13cb82ae9ea5e1db70d4825a56a4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2b8e13cb82ae9ea5e1db70d4825a56a4
Size

39KB
MD5

2b8e13cb82ae9ea5e1db70d4825a56a4
SHA1

295179edc8a4176d7c4f559653dc4b9de3d11f91
SHA256

81bb291a755dc3e7aa208a3c60755f0d48067ea797267e36e7f485f4896de67e
SHA512

0814c18feb56cd8c18a7cc005c54e240e8d117c3bb812a14f0651c6a89c26d15ebaa1d193112091ed4c236822bcec407307637e6901a09537ac56e9f60c029df
SSDEEP

768:1UfiwHgh8yEH/qs9be+7nyWXj3antS8YzXB:1Ufiw+85C2be+NjYUFr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2b8e13cb82ae9ea5e1db70d4825a56a4

Files

2b8e13cb82ae9ea5e1db70d4825a56a4
.exe windows:4 windows x86 arch:x86

d7c3c9382b43e5478a56ea7d42452cdb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetModuleHandleA
HeapAlloc
ExitProcess
GetStartupInfoA
GetCommandLineA
GetProcessHeap

user32

MessageBoxA

Sections

.text
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ