2eba876ab9b8d1eb4c35aa4a3fcd83c7224572c158b289fe90fccab81c37757e | Triage

Sharing

General

Target

2eba876ab9b8d1eb4c35aa4a3fcd83c7224572c158b289fe90fccab81c37757e
Size

456KB
MD5

0b4bdc8b4d0dca648fdf86596c15e6f2
SHA1

7444064be12ecc79ee79a382c23527cdbee9d929
SHA256

2eba876ab9b8d1eb4c35aa4a3fcd83c7224572c158b289fe90fccab81c37757e
SHA512

96132e69c4c351f1bd7177fb442e3d4d419bed3f5778e338e8f00b3c980015293fb610538a94e29cae5e02ef965a2e1e2fe8c030377aedecc2ea4c6c20093650
SSDEEP

6144:4+76FhmSAW2MqroxBOfYJFj9Go2M2B0FyoFyYFyYFyCSFyCSFyF81wcwm:4hqrqOfYYSFvFHFHFXSFXSF/+c

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2eba876ab9b8d1eb4c35aa4a3fcd83c7224572c158b289fe90fccab81c37757e

Files

2eba876ab9b8d1eb4c35aa4a3fcd83c7224572c158b289fe90fccab81c37757e
.exe windows:4 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

D:\Code\GentisDemo\GentisDemo\obj\x64\Release\Out\GentisDemo.pdb

Sections

.text
Size: 454KB - Virtual size: 454KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ