2f190beb5df6bede7ce3f5e3be21e280N[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

2f190beb5df6bede7ce3f5e3be21e280N.exe
Size

36KB
MD5

2f190beb5df6bede7ce3f5e3be21e280
SHA1

c250841832f80d2b5d86ca03697d8d637c06dc2f
SHA256

31744164b27b9f633959fd3407e51610dbadfe532b7a24746bb1c21912cd56c4
SHA512

63dc092f90d38a80f89023933eac7e99243882737c30ffd99718504e3f51a67e3c674f981fef6a1a9ca9f142c871e1dd8d59a56371ba04f2f412209dcb5bd0f7
SSDEEP

768:T516sbdpj6OC9qZZICHgASzCTkkXLxepz/oo4JE:pDj6B9qZbgASGizp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2f190beb5df6bede7ce3f5e3be21e280N.exe

Files

2f190beb5df6bede7ce3f5e3be21e280N.exe
.dll windows:4 windows x86 arch:x86

da3b6a2275fc5e600d20cdb62077aba5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

PDB Paths

Imports

msys-2.0

__cxa_atexit
__stack_chk_fail
__stack_chk_guard
_impure_ptr
calloc
cygwin_internal
dll_dllcrt0
free
malloc
msys_detach_dll
posix_memalign
pthread_cond_broadcast
pthread_cond_destroy
pthread_cond_init
pthread_cond_signal
pthread_cond_timedwait
pthread_cond_wait
pthread_mutex_destroy
pthread_mutex_init
pthread_mutex_lock
pthread_mutex_unlock
pthread_setspecific
realloc

kernel32

FreeLibrary
GetModuleHandleA
GetProcAddress
LoadLibraryA

msys-perl5_34

PL_thr_key
Perl_av_clear
Perl_av_delete
Perl_av_exists
Perl_av_extend
Perl_av_fetch
Perl_av_fill
Perl_av_len
Perl_av_pop
Perl_av_push
Perl_av_shift
Perl_av_store
Perl_av_unshift
Perl_ckwarn
Perl_croak
Perl_croak_nocontext
Perl_croak_xs_usage
Perl_free_tmps
Perl_gv_stashpvn
Perl_hv_clear
Perl_hv_common_key_len
Perl_hv_iterinit
Perl_hv_iterkey
Perl_hv_iternext_flags
Perl_hv_placeholders_get
Perl_mg_find
Perl_mg_get
Perl_mg_set
Perl_newRV
Perl_newSV
Perl_newSV_type
Perl_newSViv
Perl_newSVpv
Perl_newSVpvn_flags
Perl_newSVsv_flags
Perl_newSVuv
Perl_newXS_deffile
Perl_newXS_flags
Perl_pop_scope
Perl_push_scope
Perl_save_destructor_x
Perl_savetmps
Perl_sv_2iv_flags
Perl_sv_2mortal
Perl_sv_2nv_flags
Perl_sv_2pv_flags
Perl_sv_2pvutf8_flags
Perl_sv_bless
Perl_sv_derived_from
Perl_sv_free2
Perl_sv_magicext
Perl_sv_newmortal
Perl_sv_setiv_mg
Perl_sv_setref_iv
Perl_sv_setsv_flags
Perl_sv_unmagic
Perl_sv_upgrade
Perl_warner
Perl_xs_boot_epilog
Perl_xs_handshake
perl_alloc
perl_construct

Exports

Exports

__gcc_deregister_frame
__gcc_register_frame
_nm__PL_thr_key
boot_threads__shared
hmod_libgcc
sharedsv_array_vtbl
sharedsv_elem_vtbl
sharedsv_scalar_vtbl

Sections

.text
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.buildid
Size: 512B - Virtual size: 53B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

/4
Size: 1024B - Virtual size: 524B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 312B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 284B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

da3b6a2275fc5e600d20cdb62077aba5

Headers

File Characteristics

PDB Paths

Imports

msys-2.0

kernel32

msys-perl5_34

Exports

Exports

Sections

.text Size: 21KB - Virtual size: 20KB

.data Size: 512B - Virtual size: 64B

.rdata Size: 3KB - Virtual size: 2KB

.buildid Size: 512B - Virtual size: 53B

/4 Size: 1024B - Virtual size: 524B

.bss Size: - Virtual size: 312B

.edata Size: 512B - Virtual size: 284B

.idata Size: 3KB - Virtual size: 2KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 21KB - Virtual size: 20KB

.data
Size: 512B - Virtual size: 64B

.rdata
Size: 3KB - Virtual size: 2KB

.buildid
Size: 512B - Virtual size: 53B

/4
Size: 1024B - Virtual size: 524B

.bss
Size: - Virtual size: 312B

.edata
Size: 512B - Virtual size: 284B

.idata
Size: 3KB - Virtual size: 2KB

.reloc
Size: 1KB - Virtual size: 1KB