11c25e7790dd6c2a9cb0edf281961c0d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

11c25e7790dd6c2a9cb0edf281961c0d
Size

2KB
MD5

11c25e7790dd6c2a9cb0edf281961c0d
SHA1

0ff1f6f0cdb2574c3f5a059365611867c437a4ee
SHA256

dc51ff3e8a4c471d411f505aa9c59bdc8ec8fae02b28ac5e2ae57f9514f70aa0
SHA512

72d6d88cd5378a41e5e1f1e02c0dcf7f5ea36c601d811cb22f53d4ab732ae00c85e7d0cba5cb2b25b953f18d5d9f44b572c60d5fd5f5d43e41a7d6d2bb42b955

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
11c25e7790dd6c2a9cb0edf281961c0d

Files

11c25e7790dd6c2a9cb0edf281961c0d
.dll windows:4 windows x86 arch:x86

30523690db33ccbd045433fb0d5c243d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

WinExec

Exports

Exports

wgkegmxagl

Sections

.text
Size: 512B - Virtual size: 62B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 154B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ