2c5367979fa47333df4cf21aca0f54b8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2c5367979fa47333df4cf21aca0f54b8
Size

47KB
MD5

2c5367979fa47333df4cf21aca0f54b8
SHA1

070d81a3dfce84c2f5b090d0d70bcbe52ba60670
SHA256

b0340ab59bd8aac33cd0a0dec2ea27de7ca9033fb4ee86fd2e5359903914ecc8
SHA512

7f2dbbcbda9e590d64278acf3c47a6ce4676c5bdd17a958d2a3bca570a627b2ec15c28ea3e609fcf8953c2922d12f6500023a5f7324ffd54e0d6cda913794422
SSDEEP

768:R8i0VquoLO7fBcUgevdxrfpTg/sXn3q5nCpVbPJoM8aUwH:yFqumO75gmdxrfJ33gnCOMW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2c5367979fa47333df4cf21aca0f54b8

Files

2c5367979fa47333df4cf21aca0f54b8
.exe windows:5 windows x86 arch:x86

4c9f153780d2ef2be81834c1c9730959

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
VirtualAlloc
GetProcAddress
LoadLibraryA

user32

GetMenuState
EnableMenuItem

advapi32

RegOpenKeyA

Sections

.text
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 220B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ZECT5
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ZECT4
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 412B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ