PO47986589988[.]bat | Triage

Sharing

Copy URL Twitter E-mail

General

Target

PO47986589988.bat
Size

574KB
MD5

3df5f7c593f8159040c8b759b3fb3a43
SHA1

6199052fc919bdf2761f705e4a159fb7191c49c4
SHA256

df8591cd992c872a9f859d2fdd8fcd8ef6d1860fa7d8a636f620eedb0a013bf3
SHA512

a513213350e288453f9fe911d1ebfde212a82aaef17c1e55c1f1b8a0846eaeb04f8cc5b2b4b3207f3c8fb9c47713a3f9a0cbbb1b5042214b5e5a854093392cd6
SSDEEP

6144:LTcTOfJSqRwyQUD4gJiCinslrczPgdVEe6ZbqIqjC43qfAtooPY1+m6jsHgH:LTEOf7RwBiSCPlrcbgd6JqEgqfigSk+

Score

N/A

Malware Config

Signatures

Files

PO47986589988.bat
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 568KB - Virtual size: 568KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ