c2398d2c9952701fcc01a523432e3bcd | Triage

Sharing

General

Target

c2398d2c9952701fcc01a523432e3bcd
Size

2.3MB
MD5

c2398d2c9952701fcc01a523432e3bcd
SHA1

73c02d5a89f4bdde532ff3ce91947297eba0521f
SHA256

7588f7a1723cad734ad3cbf29317fddc22ec978a3dbea32178f03fac79601c99
SHA512

006ad0b8d77a9028c0b765a35de318635b8124c99db82040c5caf894dd96ecbfef1c2b2ad78abbbc8a692dd8fdb8368ae7aaa72f5a2f5f00e9bfa31072f0e718
SSDEEP

49152:OjBFw01Xjj5uF1NbadIYCDRnwM7Ir+fPhKCZKIs7bosdTQ45rCyEPRwM:OVFrXxuPNbayY0B7Ir+RKu9o904O

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c2398d2c9952701fcc01a523432e3bcd

Files

c2398d2c9952701fcc01a523432e3bcd
.exe windows:4 windows x86 arch:x86

b6ffb9014d502d1650226318aef9871f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

user32

GetKeyboardType

advapi32

RegQueryValueExA

oleaut32

SysFreeString

version

VerQueryValueA

gdi32

UnrealizeObject

ole32

CreateStreamOnHGlobal

comctl32

ImageList_SetIconSize

wininet

InternetGetConnectedState

Sections

CODE
Size: 2.3MB - Virtual size: 6.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE