GILv2G[.]exe | Triage

Submit
Reports

Static

static

1

Sharing

Copy URL Twitter E-mail

Static task

static1

General

Target

GILv2G.exe
Size

748KB
MD5

4be503fd12da5b4f83dc98f44be4ec0f
SHA1

b3a3327dcb863def0c393d01cf97e2cb47a73964
SHA256

6a6397fb7790eaa7e7dea50aeaf131395238a407ec1f313defb5facfe3dfb0eb
SHA512

1aac7d614d67356cd9cdd820601d3869e79bb26949be062311a72827bf5466bc55f9d20a7c0dafc3c415217f5e5882c02d3a8ad83d1c4b2c8c91f4e56605a4b6
SSDEEP

12288:UUhDxkqjVnl36ud0zR/6CtQ9PUHIG8D3RryFot2wkda7EqmdLU2/lYYOJz2CxZhZ:jxkqjVnlqud+/2P+AJyFoBkkAqm56YOp

Score

1^/10

Malware Config

Signatures

Files

GILv2G.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Code Sign

1a:e3:b7:35:58:d0:fd:bd:45:66:e6:1f:d6:02:53:dd
Certificate

Issuer

CN=KANADE\\kande

Not Before

08/03/2024, 20:38

Not After

09/03/2025, 02:38

Subject

CN=KANADE\\kande

9b:5c:e4:ef:bd:60:24:73:4e:59:a1:5c:f8:2f:0f:2b:17:66:ca:49:7f:6e:f3:1a:8b:b4:95:16:58:a1:89:d7
Signer

Actual PE Digest

9b:5c:e4:ef:bd:60:24:73:4e:59:a1:5c:f8:2f:0f:2b:17:66:ca:49:7f:6e:f3:1a:8b:b4:95:16:58:a1:89:d7

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\kiril\source\repos\GILv2G\GILv2G\obj\Debug\GILv2G.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 728KB - Virtual size: 728KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy