2b32300303ca7102ad202025c7c6906e

General

Target

2b32300303ca7102ad202025c7c6906e
Size

21KB
MD5

2b32300303ca7102ad202025c7c6906e
SHA1

415f21be5cac70bf86d0531e043f75c80d38a1e0
SHA256

71f33d2e4228259f83848c1e2676d1e0f29c79e204f55a066b6a9a1e79c35d14
SHA512

a348e1a3be9ecc6177b7ccd3e23435688f45ba9bc5a9d51bfdab1d7e0ee392cbfdedda24898e7842c0ec8e7842864b8d55ec2efcfe35a55d05f7ae0cfcd66247
SSDEEP

384:nN5gFvoEt9U+Ms0aBv8zb2uPBwfCQXToNocLTPJ0kN8eN:zsrB4fBwLXToNocXPJ0k+2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2b32300303ca7102ad202025c7c6906e

Files

2b32300303ca7102ad202025c7c6906e
.exe windows:4 windows x86 arch:x86

c7dc17fcaf0af36342dbb03fc51cf9e8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalLock
LocalAlloc
GetSystemDirectoryA
LocalUnlock
LocalFree
GetVersion
MultiByteToWideChar
GetEnvironmentStrings
LCMapStringA
LoadLibraryA
LCMapStringW
HeapAlloc
HeapFree
GetProcAddress
GetStringTypeA
WriteFile
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
ExitProcess
TerminateProcess
GetCurrentProcess
RtlUnwind
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
GetACP
GetStringTypeW
FreeEnvironmentStringsW
GetEnvironmentStringsW
WideCharToMultiByte
GetCPInfo
GetOEMCP
SetHandleCount
GetFileType
GetStdHandle
HeapCreate

user32

PostQuitMessage
RegisterClassA
DefWindowProcA
DestroyWindow
TranslateMessage
LoadCursorA
DispatchMessageA
GetMessageA
CreateWindowExA

advapi32

RegOpenKeyA
RegCloseKey
RegQueryValueA
RegCreateKeyExA
RegQueryValueExA
RegSetValueA
RegCreateKeyA
RegSetValueExA
RegOpenKeyExA

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 791B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c7dc17fcaf0af36342dbb03fc51cf9e8

Headers

File Characteristics

Imports

kernel32

user32

advapi32

Sections

.text Size: 11KB - Virtual size: 11KB

.rdata Size: 1024B - Virtual size: 791B

.data Size: 3KB - Virtual size: 3KB

.idata Size: 1KB - Virtual size: 1KB

.rsrc Size: 1024B - Virtual size: 4KB

.reloc Size: 2KB - Virtual size: 5KB

.text
Size: 11KB - Virtual size: 11KB

.rdata
Size: 1024B - Virtual size: 791B

.data
Size: 3KB - Virtual size: 3KB

.idata
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 1024B - Virtual size: 4KB

.reloc
Size: 2KB - Virtual size: 5KB