2c72c15e7b70a32890c586a7f63ff9e9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2c72c15e7b70a32890c586a7f63ff9e9
Size

138KB
MD5

2c72c15e7b70a32890c586a7f63ff9e9
SHA1

7f9c1e22a2ab94be321d815811af77415f0d2c52
SHA256

73ea63a648278d4d3d2358a15ee702e528d9139b2a0a8d2ae49f4512d24af09a
SHA512

2a58841c4885d3c8df257e001d3448833614923d468c2011ee5e0adf248f7be63c0bc349f836c2004f81da7680e0e6c591f751590352647160fd3a317d64fc69
SSDEEP

3072:feFyX1Zq6OP+xDJrxB2RLAr/TnqktkzU:mFyX1ZqlmxdsKiU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2c72c15e7b70a32890c586a7f63ff9e9

Files

2c72c15e7b70a32890c586a7f63ff9e9
.exe windows:5 windows x86 arch:x86

4b42fe3da9b22f6e40d341c205dc3a51

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCreateKeyExW

kernel32

ExitProcess
DeleteFileA
GetLocalTime
OpenFileMappingA
GetStdHandle
ExitThread
lstrcatA
CompareStringA
HeapAlloc
OpenFile
CreateDirectoryA
CopyFileA
lstrlenA
GetCPInfo
WriteFile
DeleteFileW
GlobalFree
FindClose

user32

IsWindow
DrawIconEx
DrawIcon
LoadMenuA
CopyImage
LoadCursorA

Sections

.5b2a7
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.34c2
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.5b9b
Size: 98KB - Virtual size: 465KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.25hb
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ