201cc5ff8f75f9921f6f5f7c962819fe887135ad8f408ebf3d2676634e5096d5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

201cc5ff8f75f9921f6f5f7c962819fe887135ad8f408ebf3d2676634e5096d5
Size

1.9MB
MD5

112f0fece5a44f8f608dc500281fcfa1
SHA1

c82b9bf0af2bc9a83204a0aac521cdecf784d42c
SHA256

201cc5ff8f75f9921f6f5f7c962819fe887135ad8f408ebf3d2676634e5096d5
SHA512

8fdbb2079c06a1f61776e4e37dac3af93627e4ce9b31101106f47c32ed4e49f7d7e81fbb6e8d8a470b54efb16cb7f6f0e328ce8d22d28574c1c5b5d91bfa1bd3
SSDEEP

49152:pRYHuKLtZ8gc0S2FLdPy+s8KuqGaX0ToIBAUZLYx:PYcgc0SuRPxJBAUZL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
201cc5ff8f75f9921f6f5f7c962819fe887135ad8f408ebf3d2676634e5096d5

Files

201cc5ff8f75f9921f6f5f7c962819fe887135ad8f408ebf3d2676634e5096d5
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 848KB - Virtual size: 847KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 928KB - Virtual size: 925KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 104KB - Virtual size: 387KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ