7c67037700d03baea52ca2e60515ec2e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7c67037700d03baea52ca2e60515ec2e
Size

32KB
MD5

7c67037700d03baea52ca2e60515ec2e
SHA1

0a27949b31e5a7d5f99f1a3179ad46903c46e2cc
SHA256

0190ec4dde3d414ad92d9d0a06d72ec119035466a0f509a7029cf2e062ac4c8a
SHA512

11b66d216e265a05dea2184b3652e110b824aa99149d04e065adf53bcedec8d906032528c4105d90376c13b83d70523d42763b713129dc059430a5c42aa02286
SSDEEP

384:0qY1X3FubOsudmtt4pSqQKfXg3PcjcZNCLYPxDufFdszR2d/kMw8o4eUUUIjRz5:j6j5Y486PQFGwNR0d/euIjl5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7c67037700d03baea52ca2e60515ec2e

Files

7c67037700d03baea52ca2e60515ec2e
.exe .ps1 windows:4 windows x86 arch:x86 polyglot

a1f3c85938d839f223b9d794fc14cbfa

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CreateFileA
ExitProcess
GetModuleFileNameA
GetTempPathA
GlobalAlloc
GlobalFree
ReadFile
SetFilePointer
WriteFile
lstrcatA
lstrlenA

shell32

ShellExecuteA

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 280B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE