2c6f4538a2a553647ebeeed2d8cb136b | Triage

Sharing

General

Target

2c6f4538a2a553647ebeeed2d8cb136b
Size

726KB
MD5

2c6f4538a2a553647ebeeed2d8cb136b
SHA1

0ae5c3bfc26fc8232ef79eb12f4cc99478e5e6ec
SHA256

e9a9f3a63055755d9a46be18954a4b455588842dba80fe3a4f32a9f73a41c3db
SHA512

6fcfa3338b8e39920979f6339be52d89fa3c1269b8c338d18c271d88c2eec6a4ef8221b6fe9249fee81ebdc2c0bf935aa5ef41ccf905ae5d1e3555b5266edbdc
SSDEEP

12288:Vmf/o1UXq1fPsJBS+MReM4ZdMa3JLi779XzZt58eKpieycV74SxV9XwW:k9WUhgMLi7Lv8eKDV7RV9X9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2c6f4538a2a553647ebeeed2d8cb136b

Files

2c6f4538a2a553647ebeeed2d8cb136b
.exe windows:4 windows x86 arch:x86

b58a690e1df0c44d52075700bb8f29aa

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetUserDefaultLangID
CreateFileA
WriteConsoleW
GetLocaleInfoA
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
HeapSize
GetConsoleMode
GetConsoleCP
SetFilePointer
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
RtlUnwind
LoadLibraryA
InterlockedExchange
LCMapStringW
LCMapStringA
WriteFile
VirtualAlloc
GetOEMCP
GetACP
GetCPInfo
IsDebuggerPresent
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetThreadLocale
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount

msvcrt

_iob
_initterm
pow
fprintf
exp
?terminate@@YAXXZ
free
_initterm
malloc
_adjust_fdiv
exit
_CIpow
_ftol
__CxxFrameHandler
_purecall
_except_handler3

msvfw32

ICInfo
ICOpen
ICSendMessage
ICClose
ICGetInfo

Sections

.text
Size: 169KB - Virtual size: 168KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 62KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ