2d2e4d113505a1061cce4d16162c9aa6 | Triage

Sharing

General

Target

2d2e4d113505a1061cce4d16162c9aa6
Size

256KB
MD5

2d2e4d113505a1061cce4d16162c9aa6
SHA1

f74c00981d891d44a4a22139424622bbf33e540f
SHA256

673fdd6ecf014ef7523970385191743ab5612f948333cf984407b7ad4e9fb4d6
SHA512

4290a5eff962aa4cb87d2a7ce24dec9a0dfa7019fc9a9e214ac216da5c880231ed42cf9d0f71f99a8c6cf8f623ced9200b5422c3da43d6e855c8fcfbb918da7d
SSDEEP

6144:WFHT4OJu57Ka5fZi78yh+dErb9yNYXPjyeeKR:u4Ofay78yQdEANCPjneu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2d2e4d113505a1061cce4d16162c9aa6

Files

2d2e4d113505a1061cce4d16162c9aa6
.exe windows:4 windows x86 arch:x86

3cb1d7c4660a57caea59a7b69cbd4dfe

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetEnvironmentStringsW
RtlUnwind
CreateSemaphoreW
LoadResource
ReleaseSemaphore
GetSystemDirectoryW
GetModuleHandleW
GetModuleFileNameW
CreateFileW
GetLocalTime
HeapDestroy
GetVersionExA
FreeLibrary
LoadLibraryW
GetProcAddress
GetCurrentThreadId
GetLastError
LocalFree
GetVersionExW
HeapFree
HeapReAlloc
HeapAlloc
CreateSemaphoreW
ReleaseSemaphore

oleaut32

GetRecordInfoFromTypeInfo
OleLoadPicture
VariantChangeTypeEx
SysReAllocStringLen
OleLoadPictureFileEx
VariantClear
OleLoadPictureEx

wtsapi32

WTSRegisterSessionNotification

Sections

.text
Size: 147KB - Virtual size: 207KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 992B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 106KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 288B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ