FreeInjector-AdminVersion[.]exe | Triage

Sharing

General

Target

FreeInjector-AdminVersion.exe
Size

68KB
MD5

02019b5ef29fe257866dfeec5f52caa3
SHA1

03706291d9ed1d33eb929b7e16242d6e73b5f0ed
SHA256

afacf3288293eee20885c371c4556cdf97452c59c924a5723e5aa6006522210b
SHA512

f2d38321b3cde0477600d17f8e92756aa2950c04013136b4c2dad17553d3e9275a165536aff5f1d7fe62b5d62b4a3416ec720a677fbf3ead3147aad3e0576a22
SSDEEP

1536:mN5JerLv8lAZ6i+WZ7HgB/U+EN4ppbYYY4F7rl1i+YT7pMp:mTAvb6i+WFgskYYY47fi+YT6p

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
FreeInjector-AdminVersion.exe

Files

FreeInjector-AdminVersion.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\danie\source\repos\FreeInjector-AdminVersion\FreeInjector-AdminVersion\obj\Debug\FreeInjector-AdminVersion.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 65KB - Virtual size: 65KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ