081863f4bbe0c03051872e2bf12086bb9c6bd596f66c1be177b8c6fe357ca2de | Triage

Sharing

Copy URL Twitter E-mail

General

Target

081863f4bbe0c03051872e2bf12086bb9c6bd596f66c1be177b8c6fe357ca2de
Size

12KB
MD5

c31aa6e38fa75e1b9b24f57324e24210
SHA1

2da69c63bf6810dd7a31d133b24036321465c5ba
SHA256

081863f4bbe0c03051872e2bf12086bb9c6bd596f66c1be177b8c6fe357ca2de
SHA512

4c4ca9309b45ab214910ccc844247507e52988bbe32b2e53c97008e5c965068f57e17aae3090883d082d1d5205e41e78f8846927bec33690a55538b8adbdc62f
SSDEEP

384:NL7li/2zKq2DcEQvdQcJKLTp/NK9xa4B:dqMCQ9c4B

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
081863f4bbe0c03051872e2bf12086bb9c6bd596f66c1be177b8c6fe357ca2de

Files

081863f4bbe0c03051872e2bf12086bb9c6bd596f66c1be177b8c6fe357ca2de
.exe .ps1 windows:4 windows x86 arch:x86 polyglot

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ