c:\users\phd\documents\visual studio 2010\Projects\360Booter\360Booter\obj\x86\Debug\360Booter.pdb
Static task
static1
Behavioral task
behavioral1
Sample
360Booter+GBooter XBL.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
360Booter+GBooter XBL.exe
Resource
win10v2004-20240319-en
General
-
Target
360Booter+GBooter XBL.exe
-
Size
220KB
-
MD5
6e6c8817eab4da02456bda979fdf1479
-
SHA1
2b06717955aed1ac349972b09fe5dcb09c4cc9f6
-
SHA256
ce2a4b0c5864251c49e57a3f2d34c54edca0b50ccd8ec25b71e97c3cf0b55f7c
-
SHA512
d5a61e46adb4cb98603b4205cd9a76a3ac426acbeb19551b8c67a791854a1fc110b8273f43b9af325b270ab3f4a9a5a5f57092d8a9787395b29442c0a583b3da
-
SSDEEP
1536:DkMRE9PHkhJX/NYt39Ma3C9kMRE9PHkhJX/NYt:7uvkRbpuvkR
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 360Booter+GBooter XBL.exe
Files
-
360Booter+GBooter XBL.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 112KB - Virtual size: 112KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 106KB - Virtual size: 106KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ