6efbf946373bce80654d0c23d5d93c59bfc711d3da857cbbbe47c1b7c3900028 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6efbf946373bce80654d0c23d5d93c59bfc711d3da857cbbbe47c1b7c3900028
Size

28.7MB
MD5

e5590445134deacb65284fda933db4a1
SHA1

fb4f8f7f9b4b0ff857edd3879da9b9b28c6db4ed
SHA256

6efbf946373bce80654d0c23d5d93c59bfc711d3da857cbbbe47c1b7c3900028
SHA512

7fe2eddc429fb9e1ee4295564190d352d2f120b5c644056866318ff6ac3fb21e44adf0cf79845675ae8f7ac948582b997b901d729240b3beea0e23c1f3e29322
SSDEEP

393216:xJCKSxYEr2kZNC4obTfHYa7rXSQxVB1dShMP/2:xJCK2LQ3DVt1dVX2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6efbf946373bce80654d0c23d5d93c59bfc711d3da857cbbbe47c1b7c3900028

Files

6efbf946373bce80654d0c23d5d93c59bfc711d3da857cbbbe47c1b7c3900028
.exe windows:4 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\danie\source\repos\DanWBR\dwsim\DWSIM\obj\x64\Release\DWSIM.pdb

Sections

.text
Size: 28.6MB - Virtual size: 28.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 53KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ