2b36d8d074c6ea8bbb93bc630aa3271e | Triage

Sharing

General

Target

2b36d8d074c6ea8bbb93bc630aa3271e
Size

363KB
MD5

2b36d8d074c6ea8bbb93bc630aa3271e
SHA1

575a4984bc9956966188fa077a33f48ea177e6c7
SHA256

04b1f847a1cc4d0fdce7fdae06d7e736d4530ea8712a12f71d8aa25e4bdd5f40
SHA512

0073c419b89d7607a94eca3f99b572ba45dc463749602da5cccfd657f7d49a121b08b7b97a06d32b9e90f4c02ba9447d6b7574c7d2df39be651d35545b90a3cb
SSDEEP

6144:CTt/t72XtcLvIssPOLkweQ9XpEN1YxMlsH6IbNQGJ0LM2:g/t7wssPOiQ9XpLxMCvCGm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2b36d8d074c6ea8bbb93bc630aa3271e

Files

2b36d8d074c6ea8bbb93bc630aa3271e
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 126KB - Virtual size: 126KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 7KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.khe
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE