2c775b953c5c3faff29b694343e6fd4f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2c775b953c5c3faff29b694343e6fd4f
Size

775KB
MD5

2c775b953c5c3faff29b694343e6fd4f
SHA1

4d488898c8af52c5bd9cedfe9984af63edbf8fd4
SHA256

58872f4cc3c58c6267e3d3c919df0635c7485de1d6fd615b422a8eb2e7730e6a
SHA512

d14e669d22e4a4d5a6ac800d766f60e82ea9f9a243592918d085e4961fca48158472256cc64efa7a629806e7be57f8b3072310394c9f62d6f1d6f19c75adc329
SSDEEP

12288:H/6ROx6g2k3mQw/pYUhaAJ0B1Fjr7XOjRWY3eNRT8MAgJzwYXehmbC:f6VgLEhvIAGVPuRN3erfjleKC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2c775b953c5c3faff29b694343e6fd4f

Files

2c775b953c5c3faff29b694343e6fd4f
.exe windows:4 windows x86 arch:x86

25f67e5a0243657b89a7eaccddf68feb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TlsAlloc
GetCurrentThreadId
SetLastError
CreateMutexA
LoadLibraryExA
FindResourceA
DeleteAtom
GlobalUnlock
CloseHandle
GetExitCodeProcess
GetModuleHandleA
CreateFileA
GetProcessHeap
lstrlenW
HeapCreate
ReleaseMutex
GetStdHandle
GlobalFree
TlsGetValue
GetEnvironmentVariableA

user32

CheckRadioButton
CreateWindowExA
SetFocus
GetCaretPos
DrawEdge
CallWindowProcA
FillRect
GetDlgItem
GetDC
DispatchMessageA
CreateMenu
DrawMenuBar
IsWindow

rsaenh

CPHashData
CPGenKey
CPDeriveKey
CPDecrypt
CPSignHash

msasn1

ASN1BERDecEoid

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 765KB - Virtual size: 768KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE