20e9b474e4abb7668997a2b53208e4723dc6b6128a5ab25fd31112b2ca92b3ec | Triage

Sharing

General

Target

20e9b474e4abb7668997a2b53208e4723dc6b6128a5ab25fd31112b2ca92b3ec
Size

4.8MB
MD5

4f08f632acd47e9963c295ca32c6e3ef
SHA1

9675ea797b9c80e08095640bd2b518225e2ea8d9
SHA256

20e9b474e4abb7668997a2b53208e4723dc6b6128a5ab25fd31112b2ca92b3ec
SHA512

46e12d8e163e071e46f3f3db95e199b1b4331c879bb12243fdcda99af68a3581b69d535f34b8190c2543d342e5762d862ac2af99a4d16467edf81f87e917b6a2
SSDEEP

98304:dgeFJSsMhUudpr4M6E1pKuG48q00/Ja0uYVjd+O8getkf8dbYx:TFnMKudNt6M98zGjdXep8x

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
20e9b474e4abb7668997a2b53208e4723dc6b6128a5ab25fd31112b2ca92b3ec

Files

20e9b474e4abb7668997a2b53208e4723dc6b6128a5ab25fd31112b2ca92b3ec
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

text
Size: - Virtual size: 10.1MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

code
Size: 3.7MB - Virtual size: 3.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 109KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE