a2493b197dc1ec5e2dcc0ea3b88ec634 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a2493b197dc1ec5e2dcc0ea3b88ec634
Size

8KB
MD5

a2493b197dc1ec5e2dcc0ea3b88ec634
SHA1

cf6d38b23c496f8ae89140b40a070cb1f9a0476b
SHA256

0c1605351969c8adf1c80f9c927fa20cbf6aa2333a691c00543e15e8f3cc3d06
SHA512

2bdd01e38d9486ace6e11a68a91e2068755d073991487c3a2af23172ecce7ee8f0f802a1390b0cc0a0d369138dab09bb418640bcfb1e80df4c816255225a88f0
SSDEEP

48:OEPim6Jezsa0I70zOdxrHdA8D5GhTPFElwcc/PmffP0KFIGxBFZjGjsJ:nPiNJeJ4+FaQghTd9qMKacrZjnJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a2493b197dc1ec5e2dcc0ea3b88ec634

Files

a2493b197dc1ec5e2dcc0ea3b88ec634
.exe windows:1 windows x86 arch:x86

f9ade0aa18f660a34a4fa23392e21838

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

ExitProcess

Sections

CODE
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ