2ce17613369e44fa0d43e0dd24cfd2e2

General

Target

2ce17613369e44fa0d43e0dd24cfd2e2
Size

182KB
MD5

2ce17613369e44fa0d43e0dd24cfd2e2
SHA1

a1138b2099d55a743a1d569bfefb6c3c233b6dfb
SHA256

b08363f699707eb0ca83c8d50438759dea83a25922deb20dac6476f206467187
SHA512

c2e5b4c96d07befcd604ceb13dfb794118f17c411c37ffac843e9d3d40b9b2a77ffa9d76629a792e7284fbaa8c7f1fd50081349a3993fc0174363c3c51d17576
SSDEEP

3072:pTJXsg8UOqFwxq/q2MTM38YRluWHehGmSTqKRdQMWhh1DQjwwioxffU:bnJOqFLMTyxRlLscTPdQMWrBQjLd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2ce17613369e44fa0d43e0dd24cfd2e2

Files

2ce17613369e44fa0d43e0dd24cfd2e2
.exe windows:4 windows x86 arch:x86

dea08124a83b0863bc8a43f775ed7717

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetCriticalSectionSpinCount
GlobalHandle
BackupSeek
PrivMoveFileIdentityW
GetDriveTypeA
GetProcessAffinityMask
GetCurrentProcessId
FindAtomW
GetTickCount
EnumResourceLanguagesA
UTUnRegister
GetCommTimeouts
LeaveCriticalSection
SetLastConsoleEventActive
DeleteTimerQueueEx
WaitForMultipleObjects
GetCommandLineA
ExitProcess
GetStartupInfoA

user32

SetMenuInfo
InvalidateRect
DdeDisconnectList
SetSysColors
SetWindowLongA
SetCursor
GetCursorInfo
ArrangeIconicWindows
SetMenu
GetClassLongW
CreateIcon
UserRealizePalette
UnregisterClassA
SetPropW
DefWindowProcW
SendInput
DrawStateW
DdeInitializeA
SetMessageQueue
BroadcastSystemMessageW

shell32

DllGetVersion
SHCreateDirectoryExA
StrRStrIW
SHGetDataFromIDListW

Sections

.text
Size: 5KB - Virtual size: 810KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 173KB - Virtual size: 174KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 2KB - Virtual size: 772B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

dea08124a83b0863bc8a43f775ed7717

Headers

File Characteristics

Imports

kernel32

user32

shell32

Sections

.text Size: 5KB - Virtual size: 810KB

.data Size: 173KB - Virtual size: 174KB

.rsrc Size: 1024B - Virtual size: 4KB

.edata Size: 2KB - Virtual size: 772B

.reloc Size: - Virtual size: 4KB

.text
Size: 5KB - Virtual size: 810KB

.data
Size: 173KB - Virtual size: 174KB

.rsrc
Size: 1024B - Virtual size: 4KB

.edata
Size: 2KB - Virtual size: 772B

.reloc
Size: - Virtual size: 4KB