2de4b59d3b7cafc23a71adfc5f5a135c1a800192e5adce75f1add36082bde49fN | Triage

Sharing

General

Target

2de4b59d3b7cafc23a71adfc5f5a135c1a800192e5adce75f1add36082bde49fN
Size

737KB
MD5

5e8704837b775233a4306dd5de388860
SHA1

615e49aeb3145e11dbe49b2b0a273028639ab6bb
SHA256

2de4b59d3b7cafc23a71adfc5f5a135c1a800192e5adce75f1add36082bde49f
SHA512

972d14b7121ab5a55452ddfd07b05f0fc78b41b6256f5df98511972a7074af988728765b393215c7d453d7f84edd128f5a6bf70c47a3be52dc2b0806ecd80f34
SSDEEP

12288:U/2KdNmteLPgd3PQ3R+xQpDrqLQbmVQkKkSLzOaUtuQuDLRVkGVDs:JtPd3PQ3nDrTbb5zbUtuTLRbVDs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2de4b59d3b7cafc23a71adfc5f5a135c1a800192e5adce75f1add36082bde49fN

Files

2de4b59d3b7cafc23a71adfc5f5a135c1a800192e5adce75f1add36082bde49fN
.exe windows:4 windows

dff768214cedfc47ab221c322631645c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLocaleInfoW
GetLastError
LockFileEx
GetCommandLineA
GetConsoleProcessList

ntdll

RtlQueryInformationActivationContext

user32

SetActiveWindow
DrawIcon
TrackPopupMenuEx

Sections

.text
Size: 729KB - Virtual size: 732KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE