20c3cd93e512f707209d34a9958a5673 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

20c3cd93e512f707209d34a9958a5673
Size

28KB
MD5

20c3cd93e512f707209d34a9958a5673
SHA1

bcc6f236be87460d628a1f35df47b2a397f5845a
SHA256

bdc9cae51a81eae0c2d405b9350742b5812a295aabc60e4e923ed6d1a980638d
SHA512

97f0692bdf5b36da0571ac2715656c62fde1442c3ad020ad4a9378fe07eb0587bab59e51c79fac0de1cf42ee295b40ef22e8643392b4da2c843419ced54a80b4
SSDEEP

384:LqMnVx5Yfg5wipwRxBgCIgoV64livcr3NzPNNvKXlkU/8LHE0DK6H1yvQToCqiYA:FZYsgUjV3Kcr9zPNtQ04vWq6th

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
20c3cd93e512f707209d34a9958a5673

Files

20c3cd93e512f707209d34a9958a5673
.exe windows:4 windows x86 arch:x86

3d97f11884fff4d4750bfd7fec349cf4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

CreateMutexA
SetEnvironmentVariableA
ReplaceFile
GetConsoleInputWaitHandle
FindNextChangeNotification
RegisterConsoleIME
SetCommTimeouts
LocalHandle
SetDefaultCommConfigA
SetConsolePalette
GetUserDefaultLCID
SetCriticalSectionSpinCount
GetCommandLineA
ExitProcess
GetStartupInfoA

Sections

icode
Size: 4KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

idata
Size: 20KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

idata
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

idata
Size: 1KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ