2b5d94d1284ab894c0afaf73a0f97c48 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2b5d94d1284ab894c0afaf73a0f97c48
Size

76KB
MD5

2b5d94d1284ab894c0afaf73a0f97c48
SHA1

6f00bca64af559bfb857748a0b36475f91c214fe
SHA256

1b11f17e4f08d1c005799352b39f8ee6ac6a4ab693e1f6d0e1a506486c223824
SHA512

b8942c8e43d7e3d4940c39af1baa60280d21d967f5197c06e228e9cca1c92754146d600da30c3dd0016cc7c2b59bc50d68bcbd9f8286f96f816966c3f07cb133
SSDEEP

1536:/0wVrz1wook5M3ZkI89eYOdxHBi40d/YGgepm51aMxxKm:8Ur54KI89+HBwgwCbxH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2b5d94d1284ab894c0afaf73a0f97c48

Files

2b5d94d1284ab894c0afaf73a0f97c48
.exe windows:4 windows x86 arch:x86

9e566effe09622c7aafaf787ac56196e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BackupRead
DuplicateHandle
CancelIo
EnumTimeFormatsW
ExitProcess
CommConfigDialogW

urlmon

FaultInIEFeature
GetClassFileOrMime
CoInternetParseUrl
ReleaseBindInfo
URLOpenStreamA

comdlg32

GetSaveFileNameA
LoadAlterBitmap
ChooseColorA
dwLBSubclass
ReplaceTextA

comctl32

DrawStatusTextA
ImageList_DragEnter
DrawInsert

Sections

.text
Size: 47KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 72KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE