2b2a2eba7d1ccf9c5c714c978d71cded

General

Target

2b2a2eba7d1ccf9c5c714c978d71cded
Size

204KB
MD5

2b2a2eba7d1ccf9c5c714c978d71cded
SHA1

a68881cc3a46b39829ef62abf369d857c178765f
SHA256

8a57de9698419f27f1b9e067a4d8c5e86572c8d8822e6d7430b3b03e69fc5cd7
SHA512

a751ebb3f94c5f6f0c04958f95d02d2e137a7bac340bb50a46e827ccdc02355bab69a83d69f339b4f515aaa6d076cf22887bb66c82f5bfab46330e3a4d5de4fb
SSDEEP

96:OHezyzpezyzsamVWy1+j4L03eI9n3di+B1f:HMAMRmVt1+j8inNi+BZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2b2a2eba7d1ccf9c5c714c978d71cded

Files

2b2a2eba7d1ccf9c5c714c978d71cded
.exe windows:0 windows x86 arch:x86

6894e2dbae82dd4df56af587f59fd5d4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

AddLocalAlternateComputerNameW
AttachConsole
BackupWrite
BaseDumpAppcompatCache
BaseProcessInitPostImport
BeginUpdateResourceW
CancelDeviceWakeupRequest
ClearCommBreak
CompareStringA
ContinueDebugEvent
CreateActCtxW
CreateDirectoryExA
CreateDirectoryExW
CreateEventW
CreateFileA
CreateHardLinkA
CreateJobObjectW
CreateProcessInternalWSecure
CreateRemoteThread
CreateSocketHandle
CreateTimerQueueTimer
CreateToolhelp32Snapshot
DeactivateActCtx
DeleteTimerQueueEx
DeleteVolumeMountPointA
DosDateTimeToFileTime
DuplicateHandle
EncodePointer
EnumCalendarInfoExA
EnumDateFormatsExW
EnumLanguageGroupLocalesW
EnumResourceNamesW
EnumUILanguagesA
EnumerateLocalComputerNamesW
FatalAppExitW
FillConsoleOutputAttribute
FindAtomA
FindNextChangeNotification
FindNextVolumeA
FindNextVolumeMountPointA
FindVolumeMountPointClose
FlushInstructionCache
FoldStringA
FreeLibrary
FreeUserPhysicalPages
GenerateConsoleCtrlEvent
GetBinaryType
GetCalendarInfoA
GetComputerNameExA
GetConsoleAliasA
GetConsoleAliasesA
GetConsoleAliasesLengthW
GetConsoleAliasesW
GetConsoleCommandHistoryLengthW
GetConsoleCommandHistoryW
GetConsoleKeyboardLayoutNameW
GetConsoleNlsMode
GetConsoleWindow
GetCurrentActCtx
GetDevicePowerState
GetDiskFreeSpaceExA
GetExpandedNameW
GetFileType
GetFullPathNameA
GetGeoInfoA
GetLocalTime
GetLocaleInfoA
GetLongPathNameA
GetLongPathNameW
GetModuleFileNameA
GetModuleHandleA
GetModuleHandleExA
GetNumaHighestNodeNumber
GetProcAddress
GetProcessHeap
GetProfileIntW
GetSystemDefaultLCID
GetSystemTime
GetSystemTimeAdjustment
GetTapeParameters
GetThreadPriority
GetThreadPriorityBoost
GetUserDefaultLangID
GetVDMCurrentDirectories
GetVersion
GetVolumeInformationA
GetVolumeNameForVolumeMountPointW
GlobalAddAtomW
GlobalMemoryStatus
GlobalReAlloc
GlobalWire
HeapCompact
HeapCreate
HeapCreateTagsW
HeapDestroy
HeapLock
InterlockedCompareExchange
InterlockedIncrement
IsBadCodePtr
LCMapStringW
LZCopy
LZSeek
LoadLibraryA
MapUserPhysicalPages
MulDiv
NlsGetCacheUpdateCount
OpenFileMappingW
RaiseException
RegisterWowBaseHandlers
ReleaseActCtx
RemoveVectoredExceptionHandler
RtlFillMemory
SetConsoleCP
SetConsoleCommandHistoryMode
SetConsoleCtrlHandler
SetConsoleDisplayMode
SetConsoleMode
SetConsoleOS2OemFormat
SetConsolePalette
SetHandleCount
SetHandleInformation
SetNamedPipeHandleState
SetProcessAffinityMask
SetProcessPriorityBoost
SetSystemTime
SetTimeZoneInformation
SetUserGeoID
Sleep
TerminateJobObject
TlsFree
Toolhelp32ReadProcessMemory
TransmitCommChar
TryEnterCriticalSection
UTRegister
VerLanguageNameW
VerSetConditionMask
VerifyVersionInfoA
WriteConsoleOutputCharacterA
WritePrivateProfileStringA
lstrcmpiA

Sections

.text
Size: 132KB - Virtual size: 131KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6894e2dbae82dd4df56af587f59fd5d4

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 132KB - Virtual size: 131KB

.text
Size: 132KB - Virtual size: 131KB