8b20cfe86f2ef778461bb0ef34add6703c4bef84eb40f1547585ff515365900c | Triage

Sharing

General

Target

8b20cfe86f2ef778461bb0ef34add6703c4bef84eb40f1547585ff515365900c
Size

32KB
MD5

803008f5f087c184df1a3569fbff0321
SHA1

e1a13695ad6a6dca16f89e1951ac6e2fb44e19d7
SHA256

8b20cfe86f2ef778461bb0ef34add6703c4bef84eb40f1547585ff515365900c
SHA512

aaf92024070f52ae9221a7127774411f426ea52ba3447643788a5132e6857fe05d29c57fe61b52662a90bc36ddfa84f6144905d5fc9e72e6ffc728b3ae89f1aa
SSDEEP

768:bQGPL4vzZq2o9W7GsxBbPrnzQGPL4vzZq2o9W7GsxBbPr:cGCq2iW7zjkGCq2iW7z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
8b20cfe86f2ef778461bb0ef34add6703c4bef84eb40f1547585ff515365900c

Files

8b20cfe86f2ef778461bb0ef34add6703c4bef84eb40f1547585ff515365900c
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�2JG�u{
Size: 16KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE