8691cedae9f9b11a4b4c8c9f7cdb3171 | Triage

Sharing

General

Target

8691cedae9f9b11a4b4c8c9f7cdb3171
Size

7.0MB
MD5

8691cedae9f9b11a4b4c8c9f7cdb3171
SHA1

b75c27f11680c9a2f8c65cf3a2d84a04538a394f
SHA256

d2a8a300aac8a0b25fee60ac3970149caa0670d33b37b7922b41b689e7ae3504
SHA512

16e0e130141201a882166aaef5173f3085e2ebe09c9bfa5213ea2f275701318d48c747e7d3df49faec487dd5455a09d3a9e1edcc76348e666ab21959f339bf84
SSDEEP

196608:ctEQzd/Cvy7n1t/TOsSLpR8vwuN58Ipt:2ELOxSNyvlZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8691cedae9f9b11a4b4c8c9f7cdb3171

Files

8691cedae9f9b11a4b4c8c9f7cdb3171
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Adrian\source\repos\Gw2_Launchbuddy\Gw2 Launchbuddy\obj\Release\Gw2 Launchbuddy.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 6.7MB - Virtual size: 6.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 366KB - Virtual size: 366KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ