UIRemake[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

UIRemake.exe
Size

200KB
MD5

dfb84bd2738de86cb4f2afdb09ebfff5
SHA1

56d7ba77c26027f025c65b9a0cc73ca764741f5d
SHA256

94f3a989f851b1a031cd1f3bfc85ea0329b992e2c01d82719efa3632d932c2d1
SHA512

a67e7bc49c726ef83eb0a4516511acce47f262d5ecb673ef92017fb3b690bda14b7a108885fd012221eba3297111a79659c9be4c3bf28bbdf79774a1f50f287a
SSDEEP

3072:FluQICxO5bN8ALfUZwfgseToD+++brjNaP2qo9d0BY/LC3rr+8nYfiUIr:6GOhrpQP5qo9d02O3rr8aP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
UIRemake.exe

Files

UIRemake.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\White Cat\Downloads\UIRemake_1\UIRemake\UIRemake\obj\Release\UIRemake.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 197KB - Virtual size: 197KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ