0dca40d9e159a522af7cea9c49f6cb04 | Triage

Sharing

General

Target

0dca40d9e159a522af7cea9c49f6cb04
Size

212KB
MD5

0dca40d9e159a522af7cea9c49f6cb04
SHA1

3166d5b6b32f9623aa7c220d24d4bb597f6bdb09
SHA256

15c0a003345e2854b231295056385f6f30ccc14846999db35f32726959e1201f
SHA512

25809f177cdefa8b1d30a14c16180af1097def03bbb6bf5a070fdb32f57d0b9a1709976eec1db95f384b9cd8915264e1a380483efb144d947a78c0c26e467bec
SSDEEP

6144:/9+/O6/tjnflVELjM7aqccM9eX6oOgswopIKtZhEG6ZnKGaK872dh9k:/9gtjflVcqcF9E6AeIAZhK8287s9k

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0dca40d9e159a522af7cea9c49f6cb04

Files

0dca40d9e159a522af7cea9c49f6cb04
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.zwt
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE