2e29d0097cf17baa4cefb175f7b2ff70N[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2e29d0097cf17baa4cefb175f7b2ff70N.exe
Size

23KB
MD5

2e29d0097cf17baa4cefb175f7b2ff70
SHA1

fc377a9e509ef69c7d60001cc8fe668d82c2945f
SHA256

1f2c4bc8f72291630be739c0eaf36166855aec45e5951a82f75b3b8d0664f364
SHA512

89ac8acf75976a4fdf46ca1706a69c7999c1aff83f66499e70b8f926a5acaff498cef0be640f13ce0c3f65009a5eb716a813d09221eac2b00108e907e7f0f0f0
SSDEEP

384:5OD5u+XgNQJbF+gKkAKHDwiwhaGYpjN68wbmkOwb:IVu+XgNKYVsDxwhaG8ZwykOwb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2e29d0097cf17baa4cefb175f7b2ff70N.exe

Files

2e29d0097cf17baa4cefb175f7b2ff70N.exe
.exe windows:4 windows x86 arch:x86

74a486cde46156b4312251d213a73f3c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
GetProcAddress

msvcrt

exit

user32

IsIconic

Sections

.MPRESS1
Size: 11KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 1024B - Virtual size: 896B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE