20e6a2ec703c37dc9ccea26eaf45486ca8f2afe85092de92ca2e9eaeb7630013 | Triage

Sharing

General

Target

20e6a2ec703c37dc9ccea26eaf45486ca8f2afe85092de92ca2e9eaeb7630013
Size

3.5MB
MD5

3e407bbef8c882869711109dd15da3f8
SHA1

202564b6164e86971f7b4c5e837358acc1c4a90a
SHA256

20e6a2ec703c37dc9ccea26eaf45486ca8f2afe85092de92ca2e9eaeb7630013
SHA512

0967f329ea8bd97e0e204d03ac8e03b9675ea660c4db1cab50a44dab738f919d457ec422a463d016315b35c62eda9a88336e24768fc2148d1b791963037c7e25
SSDEEP

49152:jZAaW0JmDGqLy5XMIDDj5rqD2ygSsYK6KSVN6i9Qd/l/zIUdY3NKRLCjQZ:NlgDAMUH5sgS46vVMiCdlM3NKvZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
20e6a2ec703c37dc9ccea26eaf45486ca8f2afe85092de92ca2e9eaeb7630013

Files

20e6a2ec703c37dc9ccea26eaf45486ca8f2afe85092de92ca2e9eaeb7630013
.exe windows:4 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 2.6MB - Virtual size: 6.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

mwrnsona
Size: 808KB - Virtual size: 808KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ohvvjdyq
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE