16200ba523877e0bc3886cda158233e8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

16200ba523877e0bc3886cda158233e8
Size

21KB
MD5

16200ba523877e0bc3886cda158233e8
SHA1

c55660b6e944807d7b801f66ffab0fb26657fbf5
SHA256

69a2edb8abc21f06618ad4d6f3f989178472d12534376e3cf93c1d9eea03aff6
SHA512

cbe168e73ceac977dc46cc2796f4f8875308a88841d5893c611b452969df7186dea5f89c87adceac5434124981449c4193bf5d6fef445ce1b7c2aef301953b48
SSDEEP

384:eN3i/97uThvq7H+x8dOM60TKdluNHXEEhaiXEZqEGVz:wouTE7H+guYXEPgE0EGVz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
16200ba523877e0bc3886cda158233e8

Files

16200ba523877e0bc3886cda158233e8
.exe windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 374KB - Virtual size: 373KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 680B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ