33a14adeda2b46748dd27369ee6f05661732657a8c1960469567c3f671f867a1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

33a14adeda2b46748dd27369ee6f05661732657a8c1960469567c3f671f867a1
Size

12KB
MD5

99dcfd362fd062aa174c9f4184346d8e
SHA1

2d8799d72ae123db4514259dc40322aa49aa7282
SHA256

33a14adeda2b46748dd27369ee6f05661732657a8c1960469567c3f671f867a1
SHA512

5beb02f6dbed185422acd21ec08f35144e5cce2265b89f3a4869cecb312e12e7d9e1dfe0630006e984c2a69123419c08163408de18cca6ee60c6609275915237
SSDEEP

384:5L7li/2zCq2DcEQvdhcJKLTp/NK9xaraw:J6M/Q9craw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
33a14adeda2b46748dd27369ee6f05661732657a8c1960469567c3f671f867a1

Files

33a14adeda2b46748dd27369ee6f05661732657a8c1960469567c3f671f867a1
.exe .ps1 windows:4 windows x86 arch:x86 polyglot

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ