c6dbe6f1e1e42ab6dbb526896e11c87e | Triage

Sharing

General

Target

c6dbe6f1e1e42ab6dbb526896e11c87e
Size

217KB
MD5

c6dbe6f1e1e42ab6dbb526896e11c87e
SHA1

310d657f36d8f084888b9e9a599c3441df01a1e9
SHA256

3367c0963adf7f0ac8db6d13fb6335710986c7d600518078ca8112c8b100480a
SHA512

ff404536401e3dc49795c32154ba8dcf3590ef0c1251e9999d7689287210ace9da4fce4f69ea7b7b5d4d814fba4ab6f6a7e78999b3cab4bf9169c9d985371b31
SSDEEP

3072:esnuciTDfIT9A+sYrxzavZrWCb1ulwQBnRgztcFFXYVfrvfd59P3kLJ/pI1tTXDV:uXVYr0hrWxwQBRgS1YVrj9cLJpI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c6dbe6f1e1e42ab6dbb526896e11c87e

Files

c6dbe6f1e1e42ab6dbb526896e11c87e
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\Users\gxgaming\Desktop\gfer\gfer\obj\Release\ifre.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 43KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 167KB - Virtual size: 167KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ