20859c999642f8717c0569c965a2ea4ce5aaee54528cc8a8a5788d1da9f212ce | Triage

Sharing

General

Target

20859c999642f8717c0569c965a2ea4ce5aaee54528cc8a8a5788d1da9f212ce
Size

3.5MB
MD5

6dd49c2c745d0fc0e42bab58aec36397
SHA1

485ee0333e1155e5ca7bcf507b8b1e0b35746fbc
SHA256

20859c999642f8717c0569c965a2ea4ce5aaee54528cc8a8a5788d1da9f212ce
SHA512

a7e725295d5d038769ce45e7820cf580ba5fa8d77581af7165c66e11839a2641ccdd4bd3d4a0435ab00f019439db2f127e77966a90bc27829e4934fc13d08eef
SSDEEP

49152:ld15tzuM0S2S5mLFEuVebedv9uNBb8AftK9qrO1LS9RhSq15vTNuHv/QXd9CQxMo:ld1CFk/fUqrOiOc5z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
20859c999642f8717c0569c965a2ea4ce5aaee54528cc8a8a5788d1da9f212ce

Files

20859c999642f8717c0569c965a2ea4ce5aaee54528cc8a8a5788d1da9f212ce
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.Upack
Size: - Virtual size: 180KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 33KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE