ReShade_Setup_4[.]3[.]0[.]exe | Triage

Sharing

General

Target

ReShade_Setup_4.3.0.exe
Size

2.5MB
MD5

3e1b505d7f1bce8fb9aa508a88423cb1
SHA1

13512b843d50e5c6af07600196758cda1086cb7c
SHA256

bdd3c3b91eb893ed05f8fe01a6824d29667e7645a3188f3f1d75a1744b9a498b
SHA512

56c3693f35c66e7e00a50e00b7c815156664dde409c0df91f09397b4b0d3323d241649da8c1f470a108cbde41ad6636f68648d1435af8811d8d58894a6cc94a4
SSDEEP

49152:syClY1iOcqBCsmN6XLMdwJtqhOC5u55zjPw4kL0fxOM7Dq/3fDPHtc:glY1VCbsLVtq95u55zjr5xOM7S3fDPO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ReShade_Setup_4.3.0.exe

Files

ReShade_Setup_4.3.0.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 247KB - Virtual size: 246KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 69KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ