2b230103c6793e71465369c53bd6fc8c

Sharing

Copy URL

Twitter E-mail

General

Target

2b230103c6793e71465369c53bd6fc8c
Size

44KB
MD5

2b230103c6793e71465369c53bd6fc8c
SHA1

6114964deecc183eee4057abfebd49a131bc2f85
SHA256

4c4ef59594a2858ccf494fc8b66e735ac671def6c96f41ad3eb80269850556ad
SHA512

d9b370a829c2b035e4c1426c78b75291aaff64da0353290dbf2633e3e374a2471be931d9c2dbef9d1e4e3608df97b2df297adbfa3b97ad06cec9455f11b0ec67
SSDEEP

384:KSQdQDBs9THDaDyQoF5CU/EP3DriKP6hb/JBou5ZskqSCSMKPcfCoUKi+UdFy:SeDBAzDZFDKP6JJSuSTL6wQCUdo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2b230103c6793e71465369c53bd6fc8c

Files

2b230103c6793e71465369c53bd6fc8c
.exe windows:4 windows x86 arch:x86

72244821c450fba25d7725b246fe1dad

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetWindowTextA
DialogBoxParamW
AppendMenuW
CloseWindow
GetWindowTextLengthA
DrawTextA
GetMenu
GetDC
LoadMenuA
CopyRect
BlockInput
EndDialog
GetCursor
IsMenu
CreateIcon
DrawIcon
DialogBoxParamA
InsertMenuA
AppendMenuA
IsWindow

kernel32

DeleteFileA
GetCommandLineA
CloseHandle
GlobalFree
WideCharToMultiByte
GetFileType
GetStringTypeA
GetStdHandle
HeapFree
GetStringTypeW
lstrcpynA
lstrcpyA
GlobalAlloc
GetLastError
GetDateFormatA
lstrcmpA
GetModuleHandleA
SetLastError
GetFileSize
lstrcmpiA

comctl32

ImageList_GetDragImage
ImageList_DragLeave
ImageList_EndDrag
ImageList_Draw
ImageList_AddMasked
ImageList_Create
ImageList_Destroy
ImageList_AddIcon
ImageList_BeginDrag
ImageList_Read
ImageList_GetImageRect
ImageList_Replace
ImageList_Remove
ImageList_ReplaceIcon
ImageList_LoadImageW
ImageList_DragEnter
ImageList_GetImageInfo
ImageList_DrawIndirect

advapi32

RegDeleteValueA
RegReplaceKeyW
RegOpenKeyW
RegEnumValueA
RegQueryValueW
RegDeleteKeyA
RegLoadKeyA
RegEnumKeyExW
RegDeleteValueW
RegFlushKey
RegCreateKeyW
RegOpenKeyExW
RegEnumValueW
RegOpenKeyA
RegDeleteKeyW
RegCreateKeyExA
RegQueryInfoKeyW

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 924B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

72244821c450fba25d7725b246fe1dad

Headers

File Characteristics

Imports

user32

kernel32

comctl32

advapi32

Sections

.text Size: 8KB - Virtual size: 4KB

.data Size: 24KB - Virtual size: 23KB

.rdata Size: 4KB - Virtual size: 49KB

.rsrc Size: 3KB - Virtual size: 2KB

.reloc Size: 512B - Virtual size: 924B

.text
Size: 8KB - Virtual size: 4KB

.data
Size: 24KB - Virtual size: 23KB

.rdata
Size: 4KB - Virtual size: 49KB

.rsrc
Size: 3KB - Virtual size: 2KB

.reloc
Size: 512B - Virtual size: 924B