ColorVeil[.]exe[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ColorVeil.exe.zip
Size

34KB
MD5

29bf073f75a1c4e584a918d06a966783
SHA1

3d06f5534136dd7e82d3308ccac7455d108057f8
SHA256

02924d555db66304b8b25cf37307759e1926879ded3813262f2f601abe13b21e
SHA512

1861e44f14c94542fad8702a322c944a569d70ee4432296d0c512677dbf47b10eca26fc09475270e2c4b32a10e9cff3a1261fae5b25978ad7f3e18afcc9431b6
SSDEEP

768:5BmhLYAFutGIGnzYc6/k56WdNYpL2ejWS8iYBVYxK8YO27eI6BebMhTR505iP:5Bm9YWuXCY0MiWJU17WeIhD7P

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/ColorVeil.exe

Files

ColorVeil.exe.zip
.zip
ColorVeil.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 47KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
checksums.txt