Static task
static1
General
-
Target
DEmoji.exe
-
Size
13KB
-
MD5
b2104257ce492305a566534ce6acc1cc
-
SHA1
b8d8a6e4846a0d4cc9d3b0ddfb90868cfbe717ef
-
SHA256
396d625734803765babac8ef597fd83536a0586f269d913bef65e0a2a4491a3b
-
SHA512
cc5b4aa82f43b8ef856c2155e6f110f7a062b5e4764767247a6a195f36e65b411ae85922d79b81f58df39bcdd2880901bfa5fc5f2875c8402d5bd0b0007b01bb
-
SSDEEP
192:b6tuf00EjbuXC87/GsR3My42Cu08AM5xasmcIW1NOPnPjwAHfSB1KgD4vLOoeJ:b6tufD7DcI0M5xas2nPjw8SzKgHoe
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource DEmoji.exe
Files
-
DEmoji.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Imports
mscoree
_CorExeMain
Sections
.text Size: 10KB - Virtual size: 10KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ