61831cbaf7f90b59357555bfe1aace3dc05eece3d92d32fa7b28834ff3457645 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

61831cbaf7f90b59357555bfe1aace3dc05eece3d92d32fa7b28834ff3457645
Size

6KB
MD5

024bb8239e681c98fdd1c1cf380602af
SHA1

1b1db47df92aa01d08e425e8cbf49e569b41030d
SHA256

61831cbaf7f90b59357555bfe1aace3dc05eece3d92d32fa7b28834ff3457645
SHA512

f1f83e2beab2718a4494b0b647195ddeb669cebe0029b442a3d607bedfa0523584d051316906d925e9481598b3ad233074f73a37b94c45cc940733bba07ecc4e
SSDEEP

96:W25GUxUWq0/nAz79DaBymgKbVIpn4HvZaozNt:WHU/Jfc79DmgYVIp4PQq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
61831cbaf7f90b59357555bfe1aace3dc05eece3d92d32fa7b28834ff3457645

Files

61831cbaf7f90b59357555bfe1aace3dc05eece3d92d32fa7b28834ff3457645
.exe windows:4 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\oxerl\source\repos\C#ShellcodeRunner\C#ShellcodeRunner\obj\x64\Release\C#ShellcodeRunner.pdb

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ