227049ebc64057c3a5f51973834c2b20 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

227049ebc64057c3a5f51973834c2b20
Size

6KB
MD5

227049ebc64057c3a5f51973834c2b20
SHA1

cd5cb95ebdeee0c92aefaadab711f604e0e38dca
SHA256

e8fefcc6a7e390cc23c5a7b2b5f8c8e650f6969321ceafd064cb2c590bed1a36
SHA512

30d35e6d510b32b60d60fd204a6f818257d834b18991fd7260060e4bb7d940f3ac48f65e36bf529e4f4c82f4250dd28db6bd22d2415d97e45a1a4e5430effcc4
SSDEEP

192:Z7kTZKEWJCtYFiPa+T4cIy+04JxGk9fip:x7Fq4ctQ9fI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
227049ebc64057c3a5f51973834c2b20

Files

227049ebc64057c3a5f51973834c2b20
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 59KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ