2f20e8657abe9368c7dd25b24c15d804 | Triage

Sharing

General

Target

2f20e8657abe9368c7dd25b24c15d804
Size

114KB
MD5

2f20e8657abe9368c7dd25b24c15d804
SHA1

5f014eb0dd69e723d046b943a41922919b3eecd0
SHA256

8ae623222dfa8256092ed67ccac9eb49ce0f1c6a95fbe10d6cfc2a35cdda9786
SHA512

791a11df9f8285426becdb3bc13025db9749d64f64c013bf18bd1a7b5a6005c275177bcedab40b89888fbb558d1cc66b008b0d33cbb123b01b3cda9c5e9f4966
SSDEEP

3072:HDk7grjTZKT2JeWcnDBNnvtcux+UVR6YVNAySl5tgs:HYAjTsYenDjvtca7NAJ5N

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2f20e8657abe9368c7dd25b24c15d804

Files

2f20e8657abe9368c7dd25b24c15d804
.exe windows:4 windows x86 arch:x86

9d1f61e67df5a238eae355aeec427ab0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentDirectoryA
CompareStringA
GetProcAddress
GetTickCount
LoadLibraryA

user32

DispatchMessageA
TranslateMessage
GetMessageA

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ