21b1faba472507a4eda19090e548103fbd939ba7479cb923c32780192606b9ce | Triage

Sharing

Copy URL Twitter E-mail

General

Target

21b1faba472507a4eda19090e548103fbd939ba7479cb923c32780192606b9ce
Size

56KB
MD5

5c437da7fb1fd021ef028216d976a924
SHA1

9d9da3b459604e3c853c78d9a805b6de0d1c849e
SHA256

21b1faba472507a4eda19090e548103fbd939ba7479cb923c32780192606b9ce
SHA512

0920114d95ba559a1fc4377c18f5112829205906e71123cd4d6343a8e41c027d7169227a69cb25ea7d00f866f432e9bad0ab0e7c33e070b9bacc1125c6e4573e
SSDEEP

768:rCru/f9Uw/E6zy4n8uZ5tUXMJ+fROUmELY2glEbM3j+rd+fpRfLTWLReOOguZ:fRTzy48untU8fOMEI3jyYfPDEOguZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
21b1faba472507a4eda19090e548103fbd939ba7479cb923c32780192606b9ce

Files

21b1faba472507a4eda19090e548103fbd939ba7479cb923c32780192606b9ce
.exe .vbs windows:4 windows x86 arch:x86 polyglot

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.code
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ