2f3d1a4914d703a2f401970b0080a36e91141fbd8a94bd2865cec1b564e24d5f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2f3d1a4914d703a2f401970b0080a36e91141fbd8a94bd2865cec1b564e24d5f
Size

123KB
MD5

17e854c6774a47c06a947952ec3c1536
SHA1

cf6a2948c3ad536f0d699af40c6f65a3118bf8ea
SHA256

2f3d1a4914d703a2f401970b0080a36e91141fbd8a94bd2865cec1b564e24d5f
SHA512

2255e3b87d1142b2f85165a3ec89fb17a1bea8621bc2c1678f3e1468197c9751699551c21213f1cdf9a084b37a0419f4692076c5d5efc735b038a9541825b8c9
SSDEEP

3072:s9WnYVCDN+l0S8r+GX6iyA3ONmZwXWDQxyjV9dyMEcNdOfXqX:s8Y2Nzd+J/BMyWDQbc8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2f3d1a4914d703a2f401970b0080a36e91141fbd8a94bd2865cec1b564e24d5f

Files

2f3d1a4914d703a2f401970b0080a36e91141fbd8a94bd2865cec1b564e24d5f
.exe windows:4 windows x86 arch:x86

2923fbf7a20a072cd7f8a58982cd9b07

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetParent
GetMenu
GetDesktopWindow
GetScrollRange
GetScrollPos
GetCapture

kernel32

GlobalFindAtomA
ExitProcess
GlobalAlloc
GlobalDeleteAtom
LoadLibraryA
VirtualAllocEx

gdi32

GetClipBox
GetDCOrgEx
GetBitmapBits
GetBkMode
GetBkColor
GetTextColor

msvcrt

sqrt
wcscspn
memcpy
exit
memset
wcsncmp
swprintf
time

Exports

Exports

_9l3jZzif
Bkdug01QZ@16
n8yJNmKYj46FX
BuxTdb@20

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 126KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ