SimpleClassicTheme[.]exe | Triage

Resubmissions

12/06/2024, 16:50

240612-vcq12awcjq 3

Sharing

Copy URL Twitter E-mail

General

Target

SimpleClassicTheme.exe
Size

14.9MB
MD5

fa76f6d95800cddc40d43710676bec8e
SHA1

9b1bbf23eed573fa25866e0b27c99c8543c37590
SHA256

8644e7d837d8e17dcaa5d35b3285e0e811752ea2a383fdd28279af6587dbcbd3
SHA512

abe9b872fde22f4cd170f739b77835151484713875abc8a0c9a393b605891522aab1e30dc4e991f03884a7781b43ece7366b951c4d4c406c0826ce327e128fe8
SSDEEP

196608:vl1QuRQxNwFQmV0/a1py4E3vL4v1XdEAPXUM2Fkw5PAwYaG6h5pHOgtt+H6Obowq:4V/a/y5q12A/YkS4iNHbEbopW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SimpleClassicTheme.exe

Files

SimpleClassicTheme.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

I:\3. Visual Studio Repositories\repos\SimpleClassicTheme\SimpleClassicTheme\obj\Release\SimpleClassicTheme.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 14.6MB - Virtual size: 14.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 247KB - Virtual size: 246KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ