C:\Users\admin\source\repos\Loader\Release\Loader.pdb
Static task
static1
1 signatures
General
-
Target
Calendly.exe
-
Size
197KB
-
MD5
e3587d2c31a7d7c680df09d11e251c6c
-
SHA1
5bd678c752c9f8e3483ab5a34c355a699195f8b3
-
SHA256
21a4b41340edd1342bbf5e18883e006f58a436203d5f76de5a00b20a9ff806af
-
SHA512
0d1a58918dc91e1f2069fbfa88d8675947ec8d95f4e4d06a51fed06e9e002aae3974681a517e880503a4b65da51710956f33c792a9a68d3b4b294584fda8a4fe
-
SSDEEP
6144:5fGCNIEWfCkTnKlf7VCwzduwx4AdZjU6akjXZd+lEy+:5fGCNIEyCYnKlIwzdHuKf+lj+
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource Calendly.exe
Files
-
Calendly.exe.exe windows:6 windows x86 arch:x86
191439d8dbc82d12cb3f620cb93454b2
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
kernel32
_lread
GetProcessHeap
AllocConsole
_lwrite
CreateFiber
DecodePointer
GetCurrentDirectoryW
HeapReAlloc
HeapSize
GetConsoleOutputCP
FlushFileBuffers
CreateFileW
ClearCommError
HeapAlloc
LoadLibraryW
CloseHandle
DeleteFileW
GetDateFormatA
UpdateProcThreadAttribute
GetLastError
GetTempPathA
GetFileInformationByHandle
GetConsoleMode
CommConfigDialogA
GetNumaAvailableMemoryNode
SetThreadPriority
InitializeProcThreadAttributeList
GetCurrentProcess
HeapFree
CreateDirectoryW
SetFilePointerEx
GetFileSizeEx
GetStringTypeW
SetStdHandle
FreeEnvironmentStringsW
GetEnvironmentStringsW
WideCharToMultiByte
GetCommandLineW
GetCommandLineA
GetCPInfo
GetOEMCP
GetACP
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
GetModuleHandleW
RtlUnwind
RaiseException
SetLastError
EncodePointer
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
FreeLibrary
GetProcAddress
LoadLibraryExW
GetStdHandle
WriteFile
GetModuleFileNameW
ExitProcess
GetModuleHandleExW
GetFileType
MultiByteToWideChar
LCMapStringW
FindClose
FindFirstFileExW
FindNextFileW
IsValidCodePage
WriteConsoleW
user32
IsDialogMessageA
GetWindowLongA
GetActiveWindow
SetForegroundWindow
SetParent
IsChild
DefRawInputProc
gdi32
ColorMatchToTarget
ResetDCA
GetWindowExtEx
CreateCompatibleDC
RectVisible
SetBoundsRect
GetBitmapDimensionEx
ExtFloodFill
SetPolyFillMode
GetPixel
ExtCreateRegion
GetTextFaceA
GetTextColor
CloseFigure
GdiComment
FlattenPath
GetCharWidthA
CreateDIBPatternBrush
shell32
SHGetFolderPathW
ole32
CoCreateInstance
CoUninitialize
CoInitialize
shlwapi
PathCombineA
uxtheme
GetWindowTheme
GetThemeSysInt
BufferedPaintUnInit
SetThemeAppProperties
GetBufferedPaintTargetRect
Sections
.text Size: 143KB - Virtual size: 143KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 31KB - Virtual size: 30KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 3KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 12KB - Virtual size: 11KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 6KB - Virtual size: 6KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ