49a20c39fa06171b7917785310a01dfb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

49a20c39fa06171b7917785310a01dfb
Size

97KB
MD5

49a20c39fa06171b7917785310a01dfb
SHA1

27ab4b42e76a61f7d52a1388b1c91ba185e852c7
SHA256

73e509d6917e17ca03461f0867528cbabfec8d6f785b59a4dd88a8c1d273c5c4
SHA512

f16b074f4de9321563350744af9d110903079684a29c52d4abbfb1f359a39d775f65504b1c120f4a9eae4744ab0b70b7bf8bdba1a495c0af7ae6b2c55bbefacd
SSDEEP

1536:oHTlx+Q3HGBdxz/9TIOGOaPRbuE3j2zKWI1WIeGqr6qm7bOxOMThOCn7sQat87d7:KCEf5PRbhz2ZBIXAr53sQS2cW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
49a20c39fa06171b7917785310a01dfb

Files

49a20c39fa06171b7917785310a01dfb
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 252KB - Virtual size: 251KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 44KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ