C:\Users\Napal\Documents\GitHub\GTAIV\GTAIVDowngrader\GTAIVDowngrader\obj\Release\IVDowngrader.pdb
Static task
static1
1 signatures
General
-
Target
IVDowngrader.exe
-
Size
5.1MB
-
MD5
e32eb41bd3ddead86a3869c96260b21d
-
SHA1
d5ca49300f59147a115228b703b933aaecaade78
-
SHA256
2ea1a03e3b987e4b35a5993a6a2b5ea4c5d74afa6ba3d9b3e87782293e925707
-
SHA512
17b7a7ae96172fe05672c7a0ab2889256aa6c0dc4ef97bed016c069cf325a59d313beac1d897e9d9718cd305c043c3229fb9836549888325e737f5ed00e65509
-
SSDEEP
98304:B2qqsEoetkZYBARVFZ0z71zLWHmWLyhh34aJjj0fIbSvc7cx+IwR:4nxo4kPVY71aQ4aFgfIbSEQ0l
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource IVDowngrader.exe
Files
-
IVDowngrader.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 5.1MB - Virtual size: 5.1MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 15KB - Virtual size: 15KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ