20b5c1676d99f2dfabf8b08ac054e129 | Triage

Sharing

General

Target

20b5c1676d99f2dfabf8b08ac054e129
Size

183KB
MD5

20b5c1676d99f2dfabf8b08ac054e129
SHA1

b39b37defdd7f467a082a1de551f2ca378caf95d
SHA256

21e559969123500814cd245b275510da4e90ad74f5f03b4388731975f35bc8af
SHA512

cbad5ff319ba9c1c37dbcb6502dd860e0d6e71297e07c6dbacf75285c58e01118b3697942f46b709885a5cc9e4df5d21c6cb3d12cfdbc1ec0b59e43a218566b1
SSDEEP

3072:5KBC5CH+xF7vCww95YeoLoSqtIzpeNjKBC5CH+xF7vCww95YeoLoSqtIzp:QBC564ubYe5tdABC564ubYe5t

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
20b5c1676d99f2dfabf8b08ac054e129

Files

20b5c1676d99f2dfabf8b08ac054e129
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

Size: 73KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 15KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.petite
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�T:
Size: 92KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE