205f1476d5efaa3b94d94a6aaeef502f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

205f1476d5efaa3b94d94a6aaeef502f
Size

6KB
MD5

205f1476d5efaa3b94d94a6aaeef502f
SHA1

a2740630c37fa1eb86de999b0131e453030d89fd
SHA256

11c4b81ad4063cdd58b7a61c6c3321a1457d00f9949ae3b2040c0a4d1dc1aa9a
SHA512

9c4f86b6d6636e0402db3da499777b239c2a914ce7319fb6fbc56746a1cba5963666f56f1f3eee528be688c3fad8877a9e4c72dcfbfea3793b5b97addffb8253
SSDEEP

192:UVPVp++ZxMkOaGeCL0Vf7VfPVf1fVfDC2X+a/+Zcb5AAe:MVEssaOpO+RiK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
205f1476d5efaa3b94d94a6aaeef502f

Files

205f1476d5efaa3b94d94a6aaeef502f
.exe windows:4 windows x86 arch:x86

5ce636e0a21175efbe7950cd87794030

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DrawStateA
EndMenu
EndPaint
EnumDesktopsA
FillRect
GetCaretPos

kernel32

EnumResourceNamesA
FindAtomA
FindClose
FlushFileBuffers
FreeEnvironmentStringsA
FreeLibrary

msvcrt

_y0
_strrev
_strset
_tolower
_utime
_wcsicmp
_wctime

urlmon

CoInternetParseUrl
DllUnregisterServer
FindMediaType
FindMimeFromData
GetClassURL

Sections

.text
Size: 1024B - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 558B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE