021fa8f94787d2f90ce5e06747ad7cbb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

021fa8f94787d2f90ce5e06747ad7cbb
Size

20KB
MD5

021fa8f94787d2f90ce5e06747ad7cbb
SHA1

fde71b962fdbfed1ae6951f96ccb3359d9842960
SHA256

d4845c57cdee8a9c50389f349140df14152718b95214cfb2febd67ed91d841fd
SHA512

831689666f432df46fe111353f95e4aa2cede9ea1ca1010a52e2de33a57550cc69d4a6759997865584c0e023804112a247c03f476523654d75e778a6e05e0a22
SSDEEP

192:nDrailbmb1/VKzh5vPpf1koOzv47uELCw4sOZ/zR1aSW1aT1GibuKDf:Dvsb1tg/3d1CDsOZ/raSBoiSKD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
021fa8f94787d2f90ce5e06747ad7cbb

Files

021fa8f94787d2f90ce5e06747ad7cbb
.exe windows:1 windows x86 arch:x86

f9ade0aa18f660a34a4fa23392e21838

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

ExitProcess

Sections

CODE
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ