Stix Free Tweaking Utility[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Stix Free Tweaking Utility.exe
Size

131KB
MD5

a8011763e76082bd6bf3150384177083
SHA1

95d24ed8f08c8b364fb68e9375d72a16633dc889
SHA256

d1d53ec74b3f5a1dad6ac77975a7104f0be29984fad13bd40054f1f28b579210
SHA512

df3ee99a4636120a673661d01961462abf3820386fa755ec0d474547b9d9515fa46d7517f51cc4b13ca2464c05e1c91291a7ccf9415f5e560da9f6e188179299
SSDEEP

768:6+FS+IScOLHcD7Gxws0Dex87EUYD9uXYKT/CxDI9CugFc+Nm4FGlgq3so4pvXtt:6+w8c6q7eq7EkTinFc+5Fh7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Stix Free Tweaking Utility.exe

Files

Stix Free Tweaking Utility.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\Chase\Desktop\Stix Free Tweaking Utility\Stix Free Tweaking Utility\obj\Debug\Stix Free Tweaking Utility.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 124KB - Virtual size: 123KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ