dbad85d79c154d69100c46e109553cc052a91e3484f905f71907953b03b4d046 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dbad85d79c154d69100c46e109553cc052a91e3484f905f71907953b03b4d046
Size

12KB
MD5

67bd4ad60aeecc4a574106d9c43279d7
SHA1

1631f7a5fe68faa21b8a43eba03e16ee7d40b49d
SHA256

dbad85d79c154d69100c46e109553cc052a91e3484f905f71907953b03b4d046
SHA512

42b69b36224c8fea171b5475c4c8c431c5fa66e425a556481fcdeb7d18001a113ef44d9546e60aaa573a424f7b1a014b5f24df60d310f8d0c011fa60c86148ce
SSDEEP

384:kL7li/2zjq2DcEQvdQcJKLTp/NK9xaTk:y/MCQ9cTk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dbad85d79c154d69100c46e109553cc052a91e3484f905f71907953b03b4d046

Files

dbad85d79c154d69100c46e109553cc052a91e3484f905f71907953b03b4d046
.exe .ps1 windows:4 windows x86 arch:x86 polyglot

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ