c2145eb9b8caf6255d12339e814bfb70 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c2145eb9b8caf6255d12339e814bfb70
Size

135KB
MD5

c2145eb9b8caf6255d12339e814bfb70
SHA1

9746b696b3ce23da085d046dfc633841b1279a66
SHA256

841dfab81145438617cbe32e9a3de1b0231cd01b75d2de6b63e2ffcca57798d8
SHA512

379546272d093ceb3aff1af1d5657e5b51c85c4deba215bc0c0f9fa829a3bf840069dea88df9d7ef4dc73b4707cb0e1717456115da5084ce0b470ac045c669e9
SSDEEP

3072:I9FmUgghYzfyHOhZ1B9017/bW8tAJhIWDzd:I97YQkETbW8tAJV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c2145eb9b8caf6255d12339e814bfb70

Files

c2145eb9b8caf6255d12339e814bfb70
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\Admin\source\repos\TokenLog V2\TokenLog V2\obj\Debug\net6.0-windows\TokenLog V2.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 132KB - Virtual size: 132KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ