Static task
static1
General
-
Target
AME Wizard Beta.exe
-
Size
45.4MB
-
MD5
d717b265b35949d40a08e38c1928a43a
-
SHA1
cdaf52b5852d02cecb4636a7561399e84a46c9c6
-
SHA256
065ae27511e5673a12ea9bd6fcb6af7581ad8654131dd0ca7aa934e666608ca1
-
SHA512
8ee601ea897121010bf6c07768e3de3125639738c158f1fbdaa556f5741fba56b69ec7c0d611f2bcd6b662d1274834590064f1ec9aacc90e0b515e9109d7e509
-
SSDEEP
786432:w9uPjKzP+CJNzE/+WP5iw56oyleejcL8T8fc3P:wMA9HzEmG5iof1ewk
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource AME Wizard Beta.exe
Files
-
AME Wizard Beta.exe.exe windows x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Sections
.text Size: 45.2MB - Virtual size: 45.2MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 223KB - Virtual size: 223KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ