7c968859024b7d846c70da0cd1a9fa068dee9844390ad8c73dc968463d8221c0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7c968859024b7d846c70da0cd1a9fa068dee9844390ad8c73dc968463d8221c0
Size

112KB
MD5

66c62e949bd425c9f0f7f4576d5b508b
SHA1

6db99c19f6ab9889fa1cae17dd5b0c5824381f1f
SHA256

7c968859024b7d846c70da0cd1a9fa068dee9844390ad8c73dc968463d8221c0
SHA512

8a90ff2ecb4aa89ad8d8f7fd24dc5c6466e9af30d173c3c85a12ca34a6fd10a1ffc464ec0c1e91b82e6dfbc710d14561f07af005ff56f55ab3a6228d59f5b51f
SSDEEP

3072:7rheeeePmOAE6+l6r8egKvGwbufNcV6LmrlL4/vn/Auut:fheeeePmmP6rkKDSF4Xo/jut

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/MicroKMS_v23.02.14.exe

Files

7c968859024b7d846c70da0cd1a9fa068dee9844390ad8c73dc968463d8221c0
.zip
MicroKMS_v23.02.14.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 657KB - Virtual size: 657KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 101KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ