Overview

overview

3

Static

static

3

WindowsPow...ts.ps1

windows7-x64

3

WindowsPow...ts.ps1

windows10-2004-x64

3

WindowsPow...OG.ps1

windows7-x64

3

WindowsPow...OG.ps1

windows10-2004-x64

3

WindowsPow...ts.ps1

windows7-x64

3

WindowsPow...ts.ps1

windows10-2004-x64

3

WindowsPow...Be.ps1

windows7-x64

3

WindowsPow...Be.ps1

windows10-2004-x64

3

WindowsPow...ty.ps1

windows7-x64

3

WindowsPow...ty.ps1

windows10-2004-x64

3

WindowsPow...ts.ps1

windows7-x64

3

WindowsPow...ts.ps1

windows10-2004-x64

3

WindowsPow...ow.ps1

windows7-x64

3

WindowsPow...ow.ps1

windows10-2004-x64

3

WindowsPow...ve.ps1

windows7-x64

3

WindowsPow...ve.ps1

windows10-2004-x64

3

WindowsPow...ts.ps1

windows7-x64

3

WindowsPow...ts.ps1

windows10-2004-x64

3

WindowsPow...ld.ps1

windows7-x64

3

WindowsPow...ld.ps1

windows10-2004-x64

3

WindowsPow...ts.ps1

windows7-x64

3

WindowsPow...ts.ps1

windows10-2004-x64

3

WindowsPow...xt.ps1

windows7-x64

3

WindowsPow...xt.ps1

windows10-2004-x64

3

WindowsPow...ts.ps1

windows7-x64

3

WindowsPow...ts.ps1

windows10-2004-x64

3

WindowsPow...ge.ps1

windows7-x64

3

WindowsPow...ge.ps1

windows10-2004-x64

3

WindowsPow...ts.ps1

windows7-x64

3

WindowsPow...ts.ps1

windows10-2004-x64

3

WindowsPow...be.ps1

windows7-x64

3

WindowsPow...be.ps1

windows10-2004-x64

3

Resubmissions

22/07/2024, 04:18

240722-ew3wyawemh 3

22/07/2024, 04:13

240722-es96vawekb 3

Sharing

Copy URL Twitter E-mail

General

  • Target

    WindowsPowerShell.zip

  • Size

    637KB

  • MD5

    07d37fc575e373f878ae3c7cca2bfc25

  • SHA1

    a2fc89aba12f8739184d44d0fffbe6323d9654eb

  • SHA256

    e75ff18ee5c7226e225aa9959df439f1488df8cd3d43f5471361ed0426700832

  • SHA512

    36dc7349d052cd474818a6ae3149eda469d829cf2e4d9a0e55252468cdf9e9704d5293b8b4f73b4a25b07f8c8dd8eeab2ed18bbb1ff7d76958b51eb555562339

  • SSDEEP

    12288:p+tdEY/BtfYSn+LaTe6I+VrYtsyPZn7Dc7vsZEZ7zDVzSEpSH8TRNdgS35ZOnx:Mtdp/bAc+kzIrt1nnc7vsInhIH8TPdgt

Score
3/10

Malware Config

Signatures

  • Unsigned PE 14 IoCs

    Checks for missing Authenticode signature.

Files

  • WindowsPowerShell.zip
    .zip
  • WindowsPowerShell/Modules/Microsoft.PowerShell.Operation.Validation/1.0.1/Diagnostics/Comprehensive/Comprehensive.Tests.ps1
  • WindowsPowerShell/Modules/Microsoft.PowerShell.Operation.Validation/1.0.1/Diagnostics/Simple/Simple.Tests.ps1
    .ps1
  • WindowsPowerShell/Modules/Microsoft.PowerShell.Operation.Validation/1.0.1/Microsoft.PowerShell.Operation.Validation.Format.ps1xml
  • WindowsPowerShell/Modules/Microsoft.PowerShell.Operation.Validation/1.0.1/Microsoft.PowerShell.Operation.Validation.psd1
  • WindowsPowerShell/Modules/Microsoft.PowerShell.Operation.Validation/1.0.1/Microsoft.PowerShell.Operation.Validation.psm1
    .ps1
  • WindowsPowerShell/Modules/Microsoft.PowerShell.Operation.Validation/1.0.1/OperationValidationResources.psd1
  • WindowsPowerShell/Modules/Microsoft.PowerShell.Operation.Validation/1.0.1/Test/Microsoft.PowerShell.Operation.Validation.Tests.ps1
  • WindowsPowerShell/Modules/Microsoft.PowerShell.Operation.Validation/1.0.1/Test/Modules/Example1.Diagnostics/Diagnostics/Simple/Example1.Diagnostics.Tests.ps1
  • WindowsPowerShell/Modules/Microsoft.PowerShell.Operation.Validation/1.0.1/Test/Modules/Example2.Diagnostics/1.0.1/Diagnostics/Simple/Example2.Diagnostics.Tests.ps1
  • WindowsPowerShell/Modules/Microsoft.PowerShell.Operation.Validation/1.0.1/Test/Modules/Example2.Diagnostics/1.0.1/Example2.Diagnostics.psd1
  • WindowsPowerShell/Modules/Microsoft.PowerShell.Operation.Validation/1.0.1/Test/Modules/Example3.Diagnostics/1.1.1/Diagnostics/Simple/Example3A.Diagnostics.Tests.ps1
  • WindowsPowerShell/Modules/Microsoft.PowerShell.Operation.Validation/1.0.1/Test/Modules/Example3.Diagnostics/2.0.1/Diagnostics/Simple/Example3B.Diagnostics.Tests.ps1
  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/DSCResources/MSFT_PackageManagement/MSFT_PackageManagement.psm1
    .ps1
  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/DSCResources/MSFT_PackageManagement/MSFT_PackageManagement.schema.mof
  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/DSCResources/MSFT_PackageManagement/en-US/MSFT_PackageManagement.schema.mfl
  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/DSCResources/MSFT_PackageManagement/en-US/MSFT_PackageManagement.strings.psd1
  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/DSCResources/MSFT_PackageManagementSource/MSFT_PackageManagementSource.psm1
    .ps1
  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/DSCResources/MSFT_PackageManagementSource/MSFT_PackageManagementSource.schema.mof
  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/DSCResources/MSFT_PackageManagementSource/en-US/MSFT_PackageManagementSource.schema.mfl
  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/DSCResources/MSFT_PackageManagementSource/en-US/MSFT_PackageManagementSource.strings.psd1
  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/DSCResources/PackageManagementDscUtilities.psm1
    .ps1
  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/DSCResources/en-US/PackageManagementDscUtilities.strings.psd1
  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/Microsoft.PackageManagement.ArchiverProviders.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/Microsoft.PackageManagement.CoreProviders.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/Microsoft.PackageManagement.MetaProvider.PowerShell.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/Microsoft.PackageManagement.MsiProvider.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/Microsoft.PackageManagement.MsuProvider.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/Microsoft.PackageManagement.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/Microsoft.PowerShell.PackageManagement.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/PackageManagement.format.ps1xml
    .xml
  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/PackageManagement.psd1
  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/PackageProviderFunctions.psm1
    .ps1
  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/en/Microsoft.PackageManagement.ArchiverProviders.resources.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/en/Microsoft.PackageManagement.CoreProviders.resources.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/en/Microsoft.PackageManagement.MetaProvider.PowerShell.resources.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/en/Microsoft.PackageManagement.MsiProvider.resources.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/en/Microsoft.PackageManagement.MsuProvider.resources.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/en/Microsoft.PackageManagement.resources.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/en/Microsoft.PowerShell.PackageManagement.resources.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • WindowsPowerShell/Modules/Pester/3.4.0/Build.bat
  • WindowsPowerShell/Modules/Pester/3.4.0/CHANGELOG.md
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Examples/Calculator/Add-Numbers.Tests.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Examples/Calculator/Add-Numbers.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Examples/Validator/Validator.Tests.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/Be.Tests.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/Be.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/BeGreaterThan.Tests.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/BeGreaterThan.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/BeLessThan.Tests.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/BeLessThan.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/BeLike.Tests.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/BeLike.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/BeLikeExactly.Tests.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/BeLikeExactly.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/BeNullOrEmpty.Tests.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/BeNullOrEmpty.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/BeOfType.Tests.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/BeOfType.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/Contain.Tests.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/Contain.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/ContainExactly.Tests.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/ContainExactly.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/Exist.Tests.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/Exist.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/Match.Tests.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/Match.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/MatchExactly.Tests.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/MatchExactly.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/PesterThrow.Tests.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/PesterThrow.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/Set-TestInconclusive.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/Should.Tests.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/Should.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/Test-Assertion.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/BreakAndContinue.Tests.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Context.Tests.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Context.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Coverage.Tests.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Coverage.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Describe.Tests.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Describe.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/GlobalMock-A.Tests.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/GlobalMock-B.Tests.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/In.Tests.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/In.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/InModuleScope.Tests.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/InModuleScope.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/It.Tests.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/It.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Mock.Tests.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Mock.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/New-Fixture.Tests.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/New-Fixture.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/PesterState.Tests.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/PesterState.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/SetupTeardown.Tests.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/SetupTeardown.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/TestDrive.Tests.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/TestDrive.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/TestResults.Tests.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/TestResults.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/TestsRunningInCleanRunspace.Tests.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/LICENSE
  • WindowsPowerShell/Modules/Pester/3.4.0/Pester.Tests.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Pester.nuspec
    .xml
  • WindowsPowerShell/Modules/Pester/3.4.0/Pester.psd1
  • WindowsPowerShell/Modules/Pester/3.4.0/Pester.psm1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/README.md
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Snippets/Context.snippets.ps1xml
  • WindowsPowerShell/Modules/Pester/3.4.0/Snippets/Describe.snippets.ps1xml
  • WindowsPowerShell/Modules/Pester/3.4.0/Snippets/It.snippets.ps1xml
  • WindowsPowerShell/Modules/Pester/3.4.0/Snippets/ShouldBe.snippets.ps1xml
  • WindowsPowerShell/Modules/Pester/3.4.0/Snippets/ShouldBeGreaterThan.snippets.ps1xml
  • WindowsPowerShell/Modules/Pester/3.4.0/Snippets/ShouldBeLessThan.snippets.ps1xml
  • WindowsPowerShell/Modules/Pester/3.4.0/Snippets/ShouldBeNullOrEmpty.snippets.ps1xml
  • WindowsPowerShell/Modules/Pester/3.4.0/Snippets/ShouldContain.snippets.ps1xml
  • WindowsPowerShell/Modules/Pester/3.4.0/Snippets/ShouldExist.snippets.ps1xml
  • WindowsPowerShell/Modules/Pester/3.4.0/Snippets/ShouldMatch.snippets.ps1xml
  • WindowsPowerShell/Modules/Pester/3.4.0/Snippets/ShouldNotBe.snippets.ps1xml
  • WindowsPowerShell/Modules/Pester/3.4.0/Snippets/ShouldNotBeNullOrEmpty.snippets.ps1xml
  • WindowsPowerShell/Modules/Pester/3.4.0/Snippets/ShouldNotContain.snippets.ps1xml
  • WindowsPowerShell/Modules/Pester/3.4.0/Snippets/ShouldNotExist.snippets.ps1xml
  • WindowsPowerShell/Modules/Pester/3.4.0/Snippets/ShouldNotMatch.snippets.ps1xml
  • WindowsPowerShell/Modules/Pester/3.4.0/Snippets/ShouldNotThrow.snippets.ps1xml
  • WindowsPowerShell/Modules/Pester/3.4.0/Snippets/ShouldThrow.snippets.ps1xml
  • WindowsPowerShell/Modules/Pester/3.4.0/bin/Pester.bat
  • WindowsPowerShell/Modules/Pester/3.4.0/build.psake.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/chocolateyInstall.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/en-US/about_BeforeEach_AfterEach.help.txt
  • WindowsPowerShell/Modules/Pester/3.4.0/en-US/about_Mocking.help.txt
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/en-US/about_Pester.help.txt
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/en-US/about_TestDrive.help.txt
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/en-US/about_should.help.txt
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/nunit_schema_2.5.xsd
    .xml
  • WindowsPowerShell/Modules/PowerShellGet/1.0.0.1/PSGet.Format.ps1xml
    .xml
  • WindowsPowerShell/Modules/PowerShellGet/1.0.0.1/PSGet.Resource.psd1
  • WindowsPowerShell/Modules/PowerShellGet/1.0.0.1/PSModule.psm1
    .ps1
  • WindowsPowerShell/Modules/PowerShellGet/1.0.0.1/PowerShellGet.psd1
  • WindowsPowerShell/Modules/PowerShellGet/1.0.0.1/en-US/PSGet.Resource.psd1