13abbec7d2ae770268ea3e149e3dff6162c8462a1095cbd08bc0c21c7f998a7c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

13abbec7d2ae770268ea3e149e3dff6162c8462a1095cbd08bc0c21c7f998a7c
Size

12KB
MD5

4bc7604740636cec51550ae5627cb1bd
SHA1

a114073065b936e3986f0b5f8e14dd079adaec14
SHA256

13abbec7d2ae770268ea3e149e3dff6162c8462a1095cbd08bc0c21c7f998a7c
SHA512

731f2a4069b4a86616f9ee35f2750bdf9cdd93535ec662726eaba819038ffcce2b9b02f0bb7ce33cb90d9d0b42846bc29a2cfe051101f77ede88ece3c3f637c5
SSDEEP

384:7L7li/2z5q2DcEQvdhcJKLTp/NK9xaah:v5M/Q9cah

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
13abbec7d2ae770268ea3e149e3dff6162c8462a1095cbd08bc0c21c7f998a7c

Files

13abbec7d2ae770268ea3e149e3dff6162c8462a1095cbd08bc0c21c7f998a7c
.exe .ps1 windows:4 windows x86 arch:x86 polyglot

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ