Overview

overview

7

Static

static

3

WindowsPow...ts.ps1

windows7-x64

3

WindowsPow...ts.ps1

windows10-2004-x64

3

WindowsPow...ts.ps1

windows7-x64

3

WindowsPow...ts.ps1

windows10-2004-x64

3

WindowsPow...ps1xml

windows7-x64

3

WindowsPow...ps1xml

windows10-2004-x64

7

WindowsPow...on.ps1

windows7-x64

3

WindowsPow...on.ps1

windows10-2004-x64

3

WindowsPow...l..ps1

windows7-x64

3

WindowsPow...l..ps1

windows10-2004-x64

3

WindowsPow...ag.ps1

windows7-x64

3

WindowsPow...ag.ps1

windows10-2004-x64

3

WindowsPow...ag.ps1

windows7-x64

3

WindowsPow...ag.ps1

windows10-2004-x64

3

WindowsPow...ag.ps1

windows7-x64

3

WindowsPow...ag.ps1

windows10-2004-x64

3

WindowsPow...ag.ps1

windows7-x64

3

WindowsPow...ag.ps1

windows10-2004-x64

3

WindowsPow...ne.dll

windows7-x64

1

WindowsPow...ne.dll

windows10-2004-x64

1

WindowsPow...ps1xml

windows7-x64

3

WindowsPow...ps1xml

windows10-2004-x64

7

WindowsPow...ne.ps1

windows7-x64

3

WindowsPow...ne.ps1

windows10-2004-x64

3

WindowsPow...es.dll

windows7-x64

1

WindowsPow...es.dll

windows10-2004-x64

1

WindowsPow...nt.ps1

windows7-x64

3

WindowsPow...nt.ps1

windows10-2004-x64

3

WindowsPow...ce.ps1

windows7-x64

3

WindowsPow...ce.ps1

windows10-2004-x64

3

WindowsPow...es.ps1

windows7-x64

3

WindowsPow...es.ps1

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    WindowsPowerShell.zip

  • Size

    750KB

  • MD5

    8347e26340c7fc790baf960a42c1ccb1

  • SHA1

    087ded51468b36eb4781de7b53448b398c661415

  • SHA256

    d4795fd7dbcdd4e68473985b7a3ec69a3f9ccf6effb832690c384064b014fa24

  • SHA512

    ff6a41370449caca424c79143be444c2ebfed42313a5f552c9795450144bf639e623c9981509f333148b00758a7a2ec5bd482074b76158a0056bf8c6ad061fd5

  • SSDEEP

    12288:uRMDEjj7JZNOjE20iMf+8opQ406UM+Koqktdp07ytWjLPKQSZrELezQs:UjjVZNgmiW+H5tktdprgLPKnZr6s

Score
3/10

Malware Config

Signatures

  • Unsigned PE 16 IoCs

    Checks for missing Authenticode signature.

Files

  • WindowsPowerShell.zip
    .zip
  • WindowsPowerShell/Modules/Microsoft.PowerShell.Operation.Validation/1.0.1/Diagnostics/Comprehensive/Comprehensive.Tests.ps1
  • WindowsPowerShell/Modules/Microsoft.PowerShell.Operation.Validation/1.0.1/Diagnostics/Simple/Simple.Tests.ps1
    .ps1
  • WindowsPowerShell/Modules/Microsoft.PowerShell.Operation.Validation/1.0.1/Microsoft.PowerShell.Operation.Validation.Format.ps1xml
  • WindowsPowerShell/Modules/Microsoft.PowerShell.Operation.Validation/1.0.1/Microsoft.PowerShell.Operation.Validation.psd1
  • WindowsPowerShell/Modules/Microsoft.PowerShell.Operation.Validation/1.0.1/Microsoft.PowerShell.Operation.Validation.psm1
    .ps1
  • WindowsPowerShell/Modules/Microsoft.PowerShell.Operation.Validation/1.0.1/OperationValidationResources.psd1
  • WindowsPowerShell/Modules/Microsoft.PowerShell.Operation.Validation/1.0.1/Test/Microsoft.PowerShell.Operation.Validation.Tests.ps1
  • WindowsPowerShell/Modules/Microsoft.PowerShell.Operation.Validation/1.0.1/Test/Modules/Example1.Diagnostics/Diagnostics/Simple/Example1.Diagnostics.Tests.ps1
  • WindowsPowerShell/Modules/Microsoft.PowerShell.Operation.Validation/1.0.1/Test/Modules/Example2.Diagnostics/1.0.1/Diagnostics/Simple/Example2.Diagnostics.Tests.ps1
  • WindowsPowerShell/Modules/Microsoft.PowerShell.Operation.Validation/1.0.1/Test/Modules/Example2.Diagnostics/1.0.1/Example2.Diagnostics.psd1
  • WindowsPowerShell/Modules/Microsoft.PowerShell.Operation.Validation/1.0.1/Test/Modules/Example3.Diagnostics/1.1.1/Diagnostics/Simple/Example3A.Diagnostics.Tests.ps1
  • WindowsPowerShell/Modules/Microsoft.PowerShell.Operation.Validation/1.0.1/Test/Modules/Example3.Diagnostics/2.0.1/Diagnostics/Simple/Example3B.Diagnostics.Tests.ps1
  • WindowsPowerShell/Modules/PSReadLine/2.0.0/Microsoft.PowerShell.PSReadLine.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • WindowsPowerShell/Modules/PSReadLine/2.0.0/PSReadLine.format.ps1xml
  • WindowsPowerShell/Modules/PSReadLine/2.0.0/PSReadLine.psd1
  • WindowsPowerShell/Modules/PSReadLine/2.0.0/PSReadLine.psm1
    .ps1
  • WindowsPowerShell/Modules/PSReadLine/2.0.0/en/Microsoft.PowerShell.PSReadLine.Resources.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/DSCResources/MSFT_PackageManagement/MSFT_PackageManagement.psm1
    .ps1
  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/DSCResources/MSFT_PackageManagement/MSFT_PackageManagement.schema.mof
  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/DSCResources/MSFT_PackageManagement/en-US/MSFT_PackageManagement.schema.mfl
  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/DSCResources/MSFT_PackageManagement/en-US/MSFT_PackageManagement.strings.psd1
  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/DSCResources/MSFT_PackageManagementSource/MSFT_PackageManagementSource.psm1
    .ps1
  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/DSCResources/MSFT_PackageManagementSource/MSFT_PackageManagementSource.schema.mof
  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/DSCResources/MSFT_PackageManagementSource/en-US/MSFT_PackageManagementSource.schema.mfl
  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/DSCResources/MSFT_PackageManagementSource/en-US/MSFT_PackageManagementSource.strings.psd1
  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/DSCResources/PackageManagementDscUtilities.psm1
    .ps1
  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/DSCResources/en-US/PackageManagementDscUtilities.strings.psd1
  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/Microsoft.PackageManagement.ArchiverProviders.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/Microsoft.PackageManagement.CoreProviders.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/Microsoft.PackageManagement.MetaProvider.PowerShell.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/Microsoft.PackageManagement.MsiProvider.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/Microsoft.PackageManagement.MsuProvider.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/Microsoft.PackageManagement.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/Microsoft.PowerShell.PackageManagement.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/PackageManagement.format.ps1xml
    .xml
  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/PackageManagement.psd1
  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/PackageProviderFunctions.psm1
    .ps1
  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/en/Microsoft.PackageManagement.ArchiverProviders.resources.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/en/Microsoft.PackageManagement.CoreProviders.resources.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/en/Microsoft.PackageManagement.MetaProvider.PowerShell.resources.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/en/Microsoft.PackageManagement.MsiProvider.resources.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/en/Microsoft.PackageManagement.MsuProvider.resources.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/en/Microsoft.PackageManagement.resources.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • WindowsPowerShell/Modules/PackageManagement/1.0.0.1/en/Microsoft.PowerShell.PackageManagement.resources.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • WindowsPowerShell/Modules/Pester/3.4.0/Build.bat
  • WindowsPowerShell/Modules/Pester/3.4.0/CHANGELOG.md
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Examples/Calculator/Add-Numbers.Tests.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Examples/Calculator/Add-Numbers.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Examples/Validator/Validator.Tests.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/Be.Tests.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/Be.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/BeGreaterThan.Tests.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/BeGreaterThan.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/BeLessThan.Tests.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/BeLessThan.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/BeLike.Tests.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/BeLike.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/BeLikeExactly.Tests.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/BeLikeExactly.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/BeNullOrEmpty.Tests.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/BeNullOrEmpty.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/BeOfType.Tests.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/BeOfType.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/Contain.Tests.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/Contain.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/ContainExactly.Tests.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/ContainExactly.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/Exist.Tests.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/Exist.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/Match.Tests.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/Match.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/MatchExactly.Tests.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/MatchExactly.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/PesterThrow.Tests.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/PesterThrow.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/Set-TestInconclusive.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/Should.Tests.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/Should.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Assertions/Test-Assertion.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/BreakAndContinue.Tests.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Context.Tests.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Context.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Coverage.Tests.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Coverage.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Describe.Tests.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Describe.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/GlobalMock-A.Tests.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/GlobalMock-B.Tests.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/In.Tests.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/In.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/InModuleScope.Tests.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/InModuleScope.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/It.Tests.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/It.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Mock.Tests.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/Mock.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/New-Fixture.Tests.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/New-Fixture.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/PesterState.Tests.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/PesterState.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/SetupTeardown.Tests.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/SetupTeardown.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/TestDrive.Tests.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/TestDrive.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/TestResults.Tests.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/TestResults.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Functions/TestsRunningInCleanRunspace.Tests.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/LICENSE
  • WindowsPowerShell/Modules/Pester/3.4.0/Pester.Tests.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Pester.nuspec
    .xml
  • WindowsPowerShell/Modules/Pester/3.4.0/Pester.psd1
  • WindowsPowerShell/Modules/Pester/3.4.0/Pester.psm1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/README.md
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/Snippets/Context.snippets.ps1xml
  • WindowsPowerShell/Modules/Pester/3.4.0/Snippets/Describe.snippets.ps1xml
  • WindowsPowerShell/Modules/Pester/3.4.0/Snippets/It.snippets.ps1xml
  • WindowsPowerShell/Modules/Pester/3.4.0/Snippets/ShouldBe.snippets.ps1xml
  • WindowsPowerShell/Modules/Pester/3.4.0/Snippets/ShouldBeGreaterThan.snippets.ps1xml
  • WindowsPowerShell/Modules/Pester/3.4.0/Snippets/ShouldBeLessThan.snippets.ps1xml
  • WindowsPowerShell/Modules/Pester/3.4.0/Snippets/ShouldBeNullOrEmpty.snippets.ps1xml
  • WindowsPowerShell/Modules/Pester/3.4.0/Snippets/ShouldContain.snippets.ps1xml
  • WindowsPowerShell/Modules/Pester/3.4.0/Snippets/ShouldExist.snippets.ps1xml
  • WindowsPowerShell/Modules/Pester/3.4.0/Snippets/ShouldMatch.snippets.ps1xml
  • WindowsPowerShell/Modules/Pester/3.4.0/Snippets/ShouldNotBe.snippets.ps1xml
  • WindowsPowerShell/Modules/Pester/3.4.0/Snippets/ShouldNotBeNullOrEmpty.snippets.ps1xml
  • WindowsPowerShell/Modules/Pester/3.4.0/Snippets/ShouldNotContain.snippets.ps1xml
  • WindowsPowerShell/Modules/Pester/3.4.0/Snippets/ShouldNotExist.snippets.ps1xml
  • WindowsPowerShell/Modules/Pester/3.4.0/Snippets/ShouldNotMatch.snippets.ps1xml
  • WindowsPowerShell/Modules/Pester/3.4.0/Snippets/ShouldNotThrow.snippets.ps1xml
  • WindowsPowerShell/Modules/Pester/3.4.0/Snippets/ShouldThrow.snippets.ps1xml
  • WindowsPowerShell/Modules/Pester/3.4.0/bin/Pester.bat
  • WindowsPowerShell/Modules/Pester/3.4.0/build.psake.ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/chocolateyInstall.ps1
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/en-US/about_BeforeEach_AfterEach.help.txt
  • WindowsPowerShell/Modules/Pester/3.4.0/en-US/about_Mocking.help.txt
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/en-US/about_Pester.help.txt
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/en-US/about_TestDrive.help.txt
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/en-US/about_should.help.txt
    .ps1
  • WindowsPowerShell/Modules/Pester/3.4.0/nunit_schema_2.5.xsd
    .xml
  • WindowsPowerShell/Modules/PowerShellGet/1.0.0.1/PSGet.Format.ps1xml
    .xml
  • WindowsPowerShell/Modules/PowerShellGet/1.0.0.1/PSGet.Resource.psd1
  • WindowsPowerShell/Modules/PowerShellGet/1.0.0.1/PSModule.psm1
    .ps1
  • WindowsPowerShell/Modules/PowerShellGet/1.0.0.1/PowerShellGet.psd1
  • WindowsPowerShell/Modules/PowerShellGet/1.0.0.1/en-US/PSGet.Resource.psd1