Clipilot[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Clipilot.exe
Size

380KB
MD5

b13ee5cb5b7bca8e04ec3864cfafcc5e
SHA1

55f0308e531f19e173211c939bd4c2e4b7e2d9b6
SHA256

a982217e58c4584edf4e2644bb0cd5866630671584cf9ecf0ac3c271ff2a5cdb
SHA512

ddda51a3f4283f66f4df439bb4fcad128566ec5d751a3384800e312756673922c96ad5654a433f22d7ed056efbb5139f9b1146337dd1d20fc93a2de802b8a3d0
SSDEEP

6144:cb8UTpqMhKT0jA0WGi/PsG1+wGQIelfd/ViWCVkmIaK92wtpDsOkPo4mpt/U4k2:upqMhKT0jA0WHPsG1+wGQIelfd/ViWCB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Clipilot.exe

Files

Clipilot.exe
.exe windows:4 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\Belim\Desktop\Clipilot\Clipilot\obj\Debug\Clipilot.pdb

Sections

.text
Size: 152KB - Virtual size: 152KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 227KB - Virtual size: 227KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ