C:\Windows\Containers\Confidential\DotnetGenerator\Stub\Projects\SiNoEstas\obj\Debug\SiNoEstas.pdb
Static task
static1
Behavioral task
behavioral1
Sample
SecuriteInfo.com.Win32.TrojanX-gen.28596.11026.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
SecuriteInfo.com.Win32.TrojanX-gen.28596.11026.exe
Resource
win10v2004-20231222-en
General
-
Target
SecuriteInfo.com.Win32.TrojanX-gen.28596.11026.exe
-
Size
38KB
-
MD5
5ce3e02008f0275195991cb879f41d6c
-
SHA1
3d7ebb26ed36a6d17ee11a873edb82be75769d53
-
SHA256
e2cf4663d4badd0319265b4be656d915d3ad07dabd388d4733f49915b13d464e
-
SHA512
0615ecf7004fee6aad636e0d5e37e9fbe58c821d5a4134906325fa52ca1dbfc0eb76f77e726f4529de33d4928bf6c8ee68e832df7451f1a9cdb746ac678e5cba
-
SSDEEP
768:AORn0rfMNi+jDz9mZRGDYxcTgb6igeVmc6PSHqJdNZln:5Rn0YNiqDz9aRGDucUbvRXHqJr
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource SecuriteInfo.com.Win32.TrojanX-gen.28596.11026.exe
Files
-
SecuriteInfo.com.Win32.TrojanX-gen.28596.11026.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 35KB - Virtual size: 35KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ