af889a7d048cd1748708c0c619bb76a3692327d140b3d5af0f7a9d1e56fe22d1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

af889a7d048cd1748708c0c619bb76a3692327d140b3d5af0f7a9d1e56fe22d1
Size

16KB
MD5

44d5448ea4abe6e9529d2b076d272551
SHA1

75e698d48698c1fa742b4972dd4efc6d224ee21f
SHA256

af889a7d048cd1748708c0c619bb76a3692327d140b3d5af0f7a9d1e56fe22d1
SHA512

65968e5e63232f544b0e42cfb9958873584b7e50e010aebc3002d1f750531f078b9b1b66d302dbdf1992f7f81e407c7e0acd13816515fbc5434c2ab23bf7a82a
SSDEEP

192:l2EztZgpGzeyCwq7/7aL4/4hBTu8Hqf6AohsL/:lbBSIeyCwq7/7aL4/4ho8Hqf6AohsL

Score

N/A

Malware Config

Signatures

Files

af889a7d048cd1748708c0c619bb76a3692327d140b3d5af0f7a9d1e56fe22d1
.exe windows x64

ee0586bf6e99b47636a9bfeefe649405

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_APPCONTAINER
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

magicpuzzles.uwp

RHBinder__ShimExeMain

Sections

.rdata
Size: 512B - Virtual size: 124B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ