2d20fb35bd267bbc8c53d946f140d59a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2d20fb35bd267bbc8c53d946f140d59a
Size

482KB
MD5

2d20fb35bd267bbc8c53d946f140d59a
SHA1

a753435059a1282452f91bd887f1bc34a3210d9d
SHA256

221bb54af84a94a1adc26210e0c55310bd4a03d13d5d9cd56e2aafeb6d7f3051
SHA512

e0610a7e760a52ad9f5c2a056f593d0b5e0ae26ee8a36fec48dab33f6348c6759343da7e8568b028265b1086dd62956981c091319d20bcaad70e8bee5868559d
SSDEEP

12288:348OI/E3NUMlG0uT7IUYhvgIJB+7UCpcn3+5y0udRB:34883NUsGY+IJmUCp55ynRB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2d20fb35bd267bbc8c53d946f140d59a

Files

2d20fb35bd267bbc8c53d946f140d59a
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 242KB - Virtual size: 242KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 7KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rol
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE