bd052b6fcba494c12b9a953f2281516baf663f1dd89568c762bc089faf466913 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bd052b6fcba494c12b9a953f2281516baf663f1dd89568c762bc089faf466913
Size

4.2MB
MD5

d55ecd80d2ec6fa9e2dcf1965fbac00e
SHA1

f9729d435ba0b1025c8bbec8557f96ccb4c01a61
SHA256

bd052b6fcba494c12b9a953f2281516baf663f1dd89568c762bc089faf466913
SHA512

8ffe77f51471c2073d57b48d3ce29507bc6542dd1b357cbc17e0836bc5e47a60095647e059700e4c46e03dc59fea54962574253af961ad34e512ee090b767b92
SSDEEP

98304:r0HyeSxnMFSjcFx2eR/8n5aX6EK7SZ0lW9mNOLfIAx:4SegnfMgCuc/YSJ9mNOLgAx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/INV-20230822.cmd

Files

bd052b6fcba494c12b9a953f2281516baf663f1dd89568c762bc089faf466913
.zip
INV-20230822.cmd
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 4.7MB - Virtual size: 4.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ