r_PI_2300155[.]bat[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

r_PI_2300155.bat.exe
Size

949KB
MD5

4cf9d69c0a580ba6c4399b71938f3136
SHA1

a8c4a8da93221c394387cc816db1e0360c9e89e1
SHA256

426bb510c18d37da520b953e633c1dca9d950b2d8fc06e550cd9cbd1e08d7b2c
SHA512

4cb5c6a62d00a76ec0207c70a7c74b5c6084f600cd8b458bea8d6a3c301f945ec6d15ffcab1f5dfae47b49d805e9baa0f599e8d3a541a49171f4af0c857b1fcd
SSDEEP

24576:ltD/41bQ1BdGmohggWENIApXoL48eereev7Eb:X41bQfdG/hDpXoL48eereev7Eb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
r_PI_2300155.bat.exe

Files

r_PI_2300155.bat.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 545KB - Virtual size: 545KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 403KB - Virtual size: 402KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ