1904d77c8d65c0f2bff2c22e5c503a50 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1904d77c8d65c0f2bff2c22e5c503a50
Size

14KB
MD5

1904d77c8d65c0f2bff2c22e5c503a50
SHA1

d536dffefa1dbd19b4f51b93cf0cde323c519a1e
SHA256

cf7f8f56eb1a8e4d5586bba7e7c71aebce0e32977de035143ae53c88be08802e
SHA512

abf1fb83032356785b2e767bbbd51d428281d1c24d3562a1f7acc5bc2b1d4d08d66be662704e1214b4220900ea40897ed858564a988e7aea5958c3a20d2019a8
SSDEEP

192:wlc2rDAnnO+62KhAyx8JNLNRzP/ZbcgeW6QFGL6OdqeMcL8J51CwobLc+lK:Wc2rDK6thAFVPBbL6PL6OdqeR8gPc8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1904d77c8d65c0f2bff2c22e5c503a50

Files

1904d77c8d65c0f2bff2c22e5c503a50
.exe windows:4 windows x86 arch:x86

541160bce55bf5030f1053d9ca2f310b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA

kernel32

ExitProcess

Sections

.code
Size: 1KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.code1
Size: 8KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE