28d9ca46364cd232f5c8e8fdc4c460a9f758251e2d999b4932c75b56b6d68d40 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

28d9ca46364cd232f5c8e8fdc4c460a9f758251e2d999b4932c75b56b6d68d40
Size

12KB
MD5

46c2fb8a4e3ebcbd65b9a4965c2a07c9
SHA1

0a29a41da825d7a918c2b9f60d6330670373a8b7
SHA256

28d9ca46364cd232f5c8e8fdc4c460a9f758251e2d999b4932c75b56b6d68d40
SHA512

8a04f03b770e5d84c08b18b59c86e8dd694a30fb27e642c14d69e47345366d5036dc8eca18e1ad3231b00e144fe6958de8466d178cec5b5de693e87672ca31ed
SSDEEP

384:TL7li/2zJq2DcEQvdQcJKLTp/NK9xaz7:3pMCQ9cz7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
28d9ca46364cd232f5c8e8fdc4c460a9f758251e2d999b4932c75b56b6d68d40

Files

28d9ca46364cd232f5c8e8fdc4c460a9f758251e2d999b4932c75b56b6d68d40
.exe .ps1 windows:4 windows x86 arch:x86 polyglot

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ