C:\Users\sisie\source\repos\1\1\obj\Debug\1.pdb
Static task
static1
Behavioral task
behavioral1
Sample
8e2a38c6cccf6fbb76bdb2a1726ed878.exe
Resource
win7-20231129-en
General
-
Target
8e2a38c6cccf6fbb76bdb2a1726ed878
-
Size
110KB
-
MD5
8e2a38c6cccf6fbb76bdb2a1726ed878
-
SHA1
b69e5d43aa0502c27ff7c6e860c31515af52ff7b
-
SHA256
5e8ce92857793e8893c63bc4d032dabf6b1ab7458b0e4485e0feefed397cf205
-
SHA512
cf6d69cf1795e1e1b096683a5acd4f3c7053dd9fe77f35c5f5dea16e5948e36680275616ebb3d327e2360e848b6c9548e1b04070a0b4dab51b0261f63b5f4377
-
SSDEEP
3072:skjgSGGOZ1NDkBLru6HqdAGc/dw/J+jm:LgSyktrV/dQ
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 8e2a38c6cccf6fbb76bdb2a1726ed878
Files
-
8e2a38c6cccf6fbb76bdb2a1726ed878.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 108KB - Virtual size: 107KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ