2b084adb43854a0bc898bd3ac6ff42d7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2b084adb43854a0bc898bd3ac6ff42d7
Size

53KB
MD5

2b084adb43854a0bc898bd3ac6ff42d7
SHA1

45f36a7bcbe4d986bf96fc3be00af6e4a53c1405
SHA256

1dbc18b15aeb98cddcd2fe6503dbf449f08854dfb3e338bfd6e83f80ff0940be
SHA512

6e3a12a4499c2cbe2f34478483588d3c85eb76e3ff2b3da87350f509dd7620a90f32fe3fb4ccf70473e8da4f23155a064129d3a45aa40eeec21f001f1ed553b7
SSDEEP

768:f/qWhHDieFOw3iRkf5UdDF91ELPV5WGVPVIf6T/O24bNDL6ShBE:nTLFOSiJDFk8GVNIf6T2dDk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2b084adb43854a0bc898bd3ac6ff42d7

Files

2b084adb43854a0bc898bd3ac6ff42d7
.exe windows:5 windows x86 arch:x86

1b3f6f7e8b1e7a4bf56d07beb83511b4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegQueryValueExA

kernel32

lstrcpynW

shlwapi

PathCombineW
PathFileExistsW
PathFindFileNameW
PathMatchSpecW
PathRemoveFileSpecW
StrCmpNIA
StrCmpNIW
StrStrW
wvnsprintfA
wvnsprintfW

user32

DispatchMessageA
DrawIcon
GetClipboardData
GetForegroundWindow
GetMessageA
GetWindowLongA
GetWindowTextA
OpenWindowStationA
PeekMessageA

Sections

.ebcj
Size: 43KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ngjsx
Size: 2KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.kpqb
Size: 6KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ