20c0e56ffac6877b03141f0fdb7a8050 | Triage

Sharing

General

Target

20c0e56ffac6877b03141f0fdb7a8050
Size

22KB
MD5

20c0e56ffac6877b03141f0fdb7a8050
SHA1

6cfea95cfe792fd7e39ef5bd09a6f4308497bec8
SHA256

8ccde9f3a3009303d6c64005c9c34aa23496355c97a15bc1a3b97706b8ddb13c
SHA512

6abd600973469440b7232ad75a4a75446716a63740f2d79536948abe01bcd68460b384435cb03659f9171251a46de87f2d5443781607a9d4c2cf751da93f95ff
SSDEEP

384:09u3U5ZpvLw5ikMN2Iqt5l1Q8dEike1z0KCCdDZcXYXkxCNGMWVk:NWvsc1N2Iqnd/dDOXYUGW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
20c0e56ffac6877b03141f0fdb7a8050

Files

20c0e56ffac6877b03141f0fdb7a8050
.exe windows:4 windows x86 arch:x86

faaa31c89bf1c22add6ae95b8821c960

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
lstrlenA
FreeLibrary
lstrcatA
GetProcAddress

msvcrt

_strdup
strlen

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 498B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ