d19c158ae2a0ca1fd99d83d5dda794de01b6f1bf85c732d89aff5c4b90df703f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d19c158ae2a0ca1fd99d83d5dda794de01b6f1bf85c732d89aff5c4b90df703f
Size

12KB
MD5

6a2645c6c9dfac66331ac721b5ce9f65
SHA1

37d5b49b8b6f74ddef6d5e89654c8a5940d3d15f
SHA256

d19c158ae2a0ca1fd99d83d5dda794de01b6f1bf85c732d89aff5c4b90df703f
SHA512

c643277f604a559b38285f2c88e52b28a1aba5c02cf063136aa9dce698adb8d2dcc38ca5fcf0734ce45ed5d3616f9a65a48f86be03149e94548f06ec3a77d112
SSDEEP

384:QL7li/2zyq2DcEQvdQcJKLTp/NK9xaQX:OqMCQ9cQX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d19c158ae2a0ca1fd99d83d5dda794de01b6f1bf85c732d89aff5c4b90df703f

Files

d19c158ae2a0ca1fd99d83d5dda794de01b6f1bf85c732d89aff5c4b90df703f
.exe .ps1 windows:4 windows x86 arch:x86 polyglot

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ