202edfabfbc340ab87cf6c52a55cf478fde75b82bf8641057475e1b82662c756 | Triage

Sharing

General

Target

202edfabfbc340ab87cf6c52a55cf478fde75b82bf8641057475e1b82662c756
Size

6.9MB
MD5

c834e1c0cd53ff6cd9a43dedb005cce2
SHA1

42c6ad41d6d00a7772099ec9f769250957b4d7af
SHA256

202edfabfbc340ab87cf6c52a55cf478fde75b82bf8641057475e1b82662c756
SHA512

9aeb4fb842f9a833c369c626cd9735b025312b752c6c09c8d1941ea0ae6081ccf5b94d523fc14516b9e6f5897c71016d69abd756440d969e8bcf30c76f47b677
SSDEEP

196608:wxnTNzjsOzc7TGHscDgcXbIdslX38dgFYJzj:YNztzQlcDPXus98d9Jzj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
202edfabfbc340ab87cf6c52a55cf478fde75b82bf8641057475e1b82662c756

Files

202edfabfbc340ab87cf6c52a55cf478fde75b82bf8641057475e1b82662c756
.exe windows:1 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 37KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1024B - Virtual size: 588B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ