40b5bb802ef23f505c015a410b86028cd52b9a491f2a9d9aa94b670dd5cbf691 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

40b5bb802ef23f505c015a410b86028cd52b9a491f2a9d9aa94b670dd5cbf691
Size

12KB
MD5

f0bc3574cb81388dc3bc466a9e7d102a
SHA1

54be64b6a32612fd85bfbcdc772699b40831c40b
SHA256

40b5bb802ef23f505c015a410b86028cd52b9a491f2a9d9aa94b670dd5cbf691
SHA512

26868b2768d71a627a2c79d96885dd0e691326bb8fcae06c2d539fa53232970f3ae393b54c58714f9e731dab462b82145043510d29a65d14b8b67b761a825e26
SSDEEP

384:VL7li/2zHq2DcEQvdhcJKLTp/NK9xaoY:1bM/Q9coY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
40b5bb802ef23f505c015a410b86028cd52b9a491f2a9d9aa94b670dd5cbf691

Files

40b5bb802ef23f505c015a410b86028cd52b9a491f2a9d9aa94b670dd5cbf691
.exe .ps1 windows:4 windows x86 arch:x86 polyglot

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ