dec5ef8762b5c310475294bfafa15f594f8a38a430d4931f1da2759663503b48N | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dec5ef8762b5c310475294bfafa15f594f8a38a430d4931f1da2759663503b48N
Size

242KB
MD5

199c6729a4f4e4c162f25b4e57850b90
SHA1

9dbc017ba1210f05130d0a7ac6f40fa16834eb2d
SHA256

dec5ef8762b5c310475294bfafa15f594f8a38a430d4931f1da2759663503b48
SHA512

c2d650518c2547430fae6102f04349e40a79a90051db8edcf2480f45bf02f539664ac3a0281942c41c77668c3c4310a6788a4016223f8da1190de6a6e53caf09
SSDEEP

3072:RiDcjv36PhS/ZW/NmsGdVvj5YG9uBaDDf4BBzci1InbholU+ggPGB5IylCNB0rP:68otGL2GsvYbhol9tWCNB0r

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dec5ef8762b5c310475294bfafa15f594f8a38a430d4931f1da2759663503b48N

Files

dec5ef8762b5c310475294bfafa15f594f8a38a430d4931f1da2759663503b48N
.exe .ps1 windows:4 windows x86 arch:x86 polyglot

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 206KB - Virtual size: 205KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ