2b1fb890f57fbd35aad7ccdb7a557e4e | Triage

Sharing

General

Target

2b1fb890f57fbd35aad7ccdb7a557e4e
Size

52KB
MD5

2b1fb890f57fbd35aad7ccdb7a557e4e
SHA1

20537c655e8bfecb26b971bdb0a4f50aa86f1376
SHA256

a9f5c307b10c9f4d66e2a18bcc2e711edbf83e7792f8c096bb1f4832bc03e4e6
SHA512

aaf316c4322e22ac3a5189e128ac9c0567100cfe0afa05b35c8432831d7e38f72b5afbb9ffbc7bacb373ee6f6d90f6ada4a0d01833933253b95c94af6fcfa21a
SSDEEP

1536:g8b/w6R//CAMGB3H4RkiaMRnOkm0DyB6DQ8+cZ:V//uqH4R7FhONoAw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2b1fb890f57fbd35aad7ccdb7a557e4e

Files

2b1fb890f57fbd35aad7ccdb7a557e4e
.exe windows:5 windows x86 arch:x86

90649435b308338fb80ce3b22561c27c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SetViewportOrgEx
MoveToEx
AddFontResourceW
RealizePalette
CreateFontA
RectVisible
PatBlt
GetTextFaceW
Rectangle

user32

FrameRect
ClipCursor
InSendMessageEx
TileWindows
wsprintfA
SetForegroundWindow
GetWindowRect
GetSystemMenu
CheckRadioButton
HideCaret
GetWindowDC
CopyRect
UpdateWindow

kernel32

LCMapStringW
CreateDirectoryA
GlobalLock
lstrlenA
LCMapStringA
LocalReAlloc
CreateNamedPipeA
GetDateFormatA
FindResourceA
FindNextFileA
GlobalFlags
SetCurrentDirectoryW
FindResourceExA
GlobalUnlock

Exports

Exports

?akZepxTQs@@YGIG@Z
?szfzhjkF@@YGPAEPAEH@Z
?NzxXnZew@@YGXPAKI@Z
?FpzauUljGhaxOuwBmvO@@YGPAGPADM@Z
?ycMVAfyQAoFs@@YGIPAMF@Z

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 202KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ