PolysyApp_Installer[.]zip | Triage

Sharing

General

Target

PolysyApp_Installer.zip
Size

113.9MB
MD5

d1ae81f5a0eac760a80e7d0377d7e0bb
SHA1

61085e85f50eaa905454de1b79117147ef49f116
SHA256

2eeabe0491d6ed0ce9b810de803af42f9653adae4f4674cab59f8154e1e12888
SHA512

6242e56d42a47b9471859718edfc25d167eccc7b71ac3a6459f6f0f6d94d902737b03ef44d0f5e9251d365ad70ae79431b6aaff5cac33e08ac7cad6f9379b780
SSDEEP

1572864:FRPSPMNhBW1Mpx67DUd8G8mQGUPXmp7ZQhi5jiuWjg+1OfG746ISSowXhiVrIFgT:3jhgDUpvDUPsZOLtjgmq46fXKTqtPY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Polysy_Launcher.exe

Files

PolysyApp_Installer.zip
.zip
2657134e29dd220667d0fa1b63dc6bfa.cfg
4e460faec7be55772f840e78dfdc9525.cfg
87f0be633383d7dcdf63c1f43b887ed4.log
9120b383c543b9a1790fcc0630c3949b.cfg
Polysy_Launcher.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 185KB - Virtual size: 185KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
b0f062c192ecc869ded45c244b30521c.dat