199a3589d11c8dfed530e30b05dfec21 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

199a3589d11c8dfed530e30b05dfec21
Size

820KB
MD5

199a3589d11c8dfed530e30b05dfec21
SHA1

dffaab5b6116596631d731a07a50e4faf01a22a5
SHA256

d0349850a23b0028f34a98b148fba269dfb8f24f174a94b0f5b2b82797b4dcf0
SHA512

2ef0cb3bab03862510198e8bebd18e098fdfd7cce78973cd26e21ad24ad8ae137bef9dfed9a095c6c2f6297efd7c9f2dc9713ca3dd56b3f8ea8d14f878783a92
SSDEEP

24576:B/2dLSZMTI3nXseJzjkxzpVP5gJkR2N9XhEHmPA:si3HIQk0N9GGI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
199a3589d11c8dfed530e30b05dfec21

Files

199a3589d11c8dfed530e30b05dfec21
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 589KB - Virtual size: 589KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 118KB - Virtual size: 117KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 75KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ