21c7896747df9a6df2f0df1fa2e7b3ae | Triage

Sharing

Copy URL Twitter E-mail

General

Target

21c7896747df9a6df2f0df1fa2e7b3ae
Size

20KB
MD5

21c7896747df9a6df2f0df1fa2e7b3ae
SHA1

bc703fbc95dd347e5719f2e24d54cdc6718d09a9
SHA256

624d0714743ac89dcd8ba503739205557319f8a7816a81317d685842c469b16d
SHA512

4f1cf40cf9995b5fae7cf03352bb1099db985fc169e1f3f93995b79f7a103a4f3909d2bf544220cf569023650ab790cd9867a5ec787ab65ec459b227fc678f0d
SSDEEP

384:IF8LWmX4u/h67CGt+g+pP4uuY5rrdNjmBdCxvqmf5z7LeEMWN6CSa68r:z9ou/Irt+g+l+3CxvquzeEME9Hr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
21c7896747df9a6df2f0df1fa2e7b3ae

Files

21c7896747df9a6df2f0df1fa2e7b3ae
.exe windows:1 windows x86 arch:x86

c82f53f8ef61524bf587d34db8c746f1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
SetFileAttributesA
CreateFileA
GetFileSize
GlobalAlloc
ReadFile
SetFilePointer
WriteFile
CloseHandle
GlobalFree
GetModuleFileNameA
WinExec
ExitProcess

advapi32

RegCreateKeyA
RegSetValueExA
RegCloseKey

Sections

.text
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 470B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE