27f443ed852b90a4671f99212a7166c356c597cf5b29ab4551e22589bded983a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

27f443ed852b90a4671f99212a7166c356c597cf5b29ab4551e22589bded983a
Size

291KB
MD5

3570b585258ee0e5967bf6f356c28281
SHA1

b130cc36fbe5cc6efea9d53adc8dd5a8d83722e8
SHA256

27f443ed852b90a4671f99212a7166c356c597cf5b29ab4551e22589bded983a
SHA512

98a2773abb6198969421020f083b3b218a11dab7786e8ad1eca67cd73dd5cac189a27f92f5488f71de0ddc030a7e31ce4662b4cfe2c0a9a7de2923375f2188da
SSDEEP

6144:8nOsaaH+zowJbn9cpQrOma+TLIXLBmtJhRyG2BJbZZuwkg0hefTc6KAfH5Gowhml:8nOfaH0oQKpQLTLIXLBqAXbZZuwkfo6U

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
27f443ed852b90a4671f99212a7166c356c597cf5b29ab4551e22589bded983a

Files

27f443ed852b90a4671f99212a7166c356c597cf5b29ab4551e22589bded983a
.exe .vbs windows:4 windows x86 arch:x86 polyglot

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.code
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ