ffa1b2d41e4711efe7d9a89d065f5a8f3c2da00426ef4578e4c59685ae0815e1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ffa1b2d41e4711efe7d9a89d065f5a8f3c2da00426ef4578e4c59685ae0815e1
Size

45KB
MD5

6edb6004712076af21b744bf7f690672
SHA1

00a30eec695a188162f198517ef13b5100ba6b3b
SHA256

ffa1b2d41e4711efe7d9a89d065f5a8f3c2da00426ef4578e4c59685ae0815e1
SHA512

0a7dc213280270cc5af311efa99cb22f73ade8cca5163331f8bea6e9761cc59085ef79828bd86b3a321d638ff03ed1329f49855e491f8928386a3c3fa007708b
SSDEEP

768:AyRQ0JM+zSupJs3zt/HUPToMs5PfpzMl4iQ64AKP7AYfgyQWSYc3qiU:AyeCTSupJYzt/HUPsXzMi64AKFfnQW1B

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ffa1b2d41e4711efe7d9a89d065f5a8f3c2da00426ef4578e4c59685ae0815e1

Files

ffa1b2d41e4711efe7d9a89d065f5a8f3c2da00426ef4578e4c59685ae0815e1
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\info\source\repos\ClanWarWindow2\ClanWarWindow2\obj\Debug\net8.0-windows\ClanWarWindow2.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ