200949d0417971fd711fc4c24f228b72 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

200949d0417971fd711fc4c24f228b72
Size

420KB
MD5

200949d0417971fd711fc4c24f228b72
SHA1

ead1eacc157ed419fa30cf1c2de96de0189cda46
SHA256

5310bc4ac45ee24dd32a0f2455b099c79932828bd834c13f867d88bf6d042846
SHA512

e3e83238a062e7872015ea6d63cef6226dae2a989a06f367790e95eee8a4dd416af2b073d68e7769c8724405ca2302ce4e3b7dc23be9068126d98f7be910598d
SSDEEP

6144:yTPVsLwW3hwUv2ml7wxmVWuh7ri4UuxSYaWlkCpRjvHmuVOoA+Lu:yzuLH+Uv2mlImwUryu5xn733A3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
200949d0417971fd711fc4c24f228b72

Files

200949d0417971fd711fc4c24f228b72
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 404KB - Virtual size: 403KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ