C:\Users\Ashtin\Desktop\WTF\SolaraBootstrapper\SolaraBootstrapper\obj\Debug\SolaraBootstrapper.pdb
Static task
static1
1 signatures
General
-
Target
Solara_M9nqiBJgk85xjqu.rar
-
Size
6KB
-
MD5
b6be44b1127ddc9053386fd4f48ea9cb
-
SHA1
d38a4184182ec41ff4f5c8dce75cc72ebc60b670
-
SHA256
fe9fe75991992f520167459a8c1406d25cf9683714e523a933732b76903d53b7
-
SHA512
4d047d2b63a6da667ae2d1f91b175fed4065a9bfca41041dfb002ce6b3ee667cc72ea894861b88f3cacdfb63d574172c274a4c577b269055048335405d18dce1
-
SSDEEP
96:imF/scFXynHqnXSLM+g1UnGrbdXYPC7e9kOFmSf2oVPslxQ+DJvnWC/I5E:ownsq+nuZt7QmSf2owQevWC/t
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource unpack001/SolaraBootstrapper.exe
Files
-
Solara_M9nqiBJgk85xjqu.rar.rar
Password: 123
-
Cheater.Ninja.url.url
-
CheaterMAD.url.url
-
SolaraBootstrapper.exe.exe windows:4 windows x86 arch:x86
Password: 123
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 10KB - Virtual size: 10KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ