VirusMaker[.]exe | Triage

Resubmissions

01/05/2024, 23:11

240501-26nw4ahg91 3

01/05/2024, 23:11

240501-26b8asca38 7

Sharing

General

Target

VirusMaker.exe
Size

225KB
MD5

cd7354e2fc9db0a98563ba220a56b4b7
SHA1

3db61f914ba3250ba8d2508701d7e4113351166c
SHA256

b52c38d09cd23ad808c8d1291b10ef9d11ef918c13fa9766fe7dec3b34d0790d
SHA512

57ba771827720edff4dfadf95549ff50f533472b1a19ae7837e2bde05ce56e453deffd14ac7fe82632704e30538974952f02702c01dfd3060275c726c200bf90
SSDEEP

6144:xxnYmqcCDCTgUKad0/zbfrPac8A9J4JozZf7+t5s9y5iwAI3U:xxnNdTgUKad0/zbTPjxa5sY5iX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
VirusMaker.exe

Files

VirusMaker.exe
.exe windows:4 windows x86 arch:x86

Password: clown

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\Ali\Desktop\VirusMaker\VirusMaker\obj\Debug\VirusMaker.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 223KB - Virtual size: 222KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ