20a94a42167a15daa31ad3227eafa4c1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

20a94a42167a15daa31ad3227eafa4c1
Size

44KB
MD5

20a94a42167a15daa31ad3227eafa4c1
SHA1

7f45929be314891b6763f85b4d34658035a740e3
SHA256

67eae2b573901af17a9da36ab8cc67c192b03a2615446927e5ed84489bf6c1ab
SHA512

d89efc241840cb43912cac70c320e13fa5a8c04465748233032ad00db65f4c44b8f01145ee0b68b2c7cb0d8544d722567c2a73432d5669d2afe6408abf6e4d40
SSDEEP

192:WzBNJJHMJpLE+dK0+0sACgaPPPmSfca286Jm+ljxlagAF1n:PpLndK0+04HuSfcf8yxYgA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
20a94a42167a15daa31ad3227eafa4c1

Files

20a94a42167a15daa31ad3227eafa4c1
.exe windows:4 windows x86 arch:x86

9c9e751076849def39691ef860299f24

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileW
GetExitCodeProcess
GlobalFree
TlsAlloc
HeapCreate
DeleteAtom
CloseHandle
SetLastError
GetCurrentThreadId
GlobalUnlock
lstrlenW
GetModuleHandleA
FindResourceW
GetEnvironmentVariableA
TlsGetValue
LoadLibraryExA
GetStdHandle
CreateMutexA
GetProcessHeap
ReleaseMutex

user32

DispatchMessageA
FillRect
GetCaretPos
SetFocus
CreateWindowExA
DrawEdge
CreateMenu
GetDC
CheckRadioButton
GetDlgItem
CallWindowProcA
DrawMenuBar
IsWindow

rsaenh

CPGenKey
CPSignHash
CPDecrypt
CPDeriveKey
CPHashData

msasn1

ASN1BERDecEoid

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE