2bc09f8cb2d4b7f04107926300ae1180 | Triage

Sharing

General

Target

2bc09f8cb2d4b7f04107926300ae1180
Size

46KB
MD5

2bc09f8cb2d4b7f04107926300ae1180
SHA1

efad479c9d51dd6c61ac4bac1417bae397f46136
SHA256

18ca39eeb02d4aca4bb092e46f37956a4cf3f5e56e7dee01c93ddddd9fcca11d
SHA512

a0cf083921de5bc5dd80ea126c6934b42fd15dcbf6ec70a72cc862c90e2037651e4089718056da3b16e31eb603a35ff21fd4db153754c22f785ae2bacf174b5e
SSDEEP

768:LhN9wVRbuIWjrz91TxY5Fm2M7wsdPhieQDP7O9V:10IIO91TxymtheDPm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2bc09f8cb2d4b7f04107926300ae1180

Files

2bc09f8cb2d4b7f04107926300ae1180
.exe windows:4 windows x86 arch:x86

9b61341ca9b2bb016e72f915dc614016

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnumCalendarInfoExA
LoadLibraryA
GetProcAddress
GetCurrentProcess
ReplaceFileA
GetACP
DeviceIoControl
SizeofResource
SetConsoleNumberOfCommandsA
GetOverlappedResult
EnumResourceNamesW
PrepareTape
ReadConsoleW
MulDiv
Heap32Next
EnumUILanguagesA
SetCurrentDirectoryW
GetFileInformationByHandle
RemoveDirectoryA
UnhandledExceptionFilter
SetThreadPriorityBoost
GetLastError
CloseConsoleHandle
GetTempFileNameW
GetOEMCP
EscapeCommFunction
GetVersionExA
GetEnvironmentVariableW
VirtualProtectEx
CreateIoCompletionPort
GlobalFix
CreateProcessW

user32

SetCapture

Sections

.text
Size: 5KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 38KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE