C:\Users\user\Downloads\Feather\Feather\Feather\obj\x64\Release\Wind.pdb
Static task
static1
1 signatures
General
-
Target
Wind.exe
-
Size
3.0MB
-
MD5
ab903ee3083fa30c37dc9c33cda09415
-
SHA1
8ad078231244d63f1895324bf914925588a2c484
-
SHA256
2e8df015a2f215797c99a1b52f4832a93443aea94a773e0faa39e80ff197ca18
-
SHA512
97f7dabf941778faf4dbc86104323936161946cef165178603c5fd99c6efcc7c1c2db12b67cf5e86aa4f4369f667eb4f18ef92fdd7d011e1c727bc5c68d6ee97
-
SSDEEP
24576:554mNgyNilNR2zTJF2ZHuduTJTyCA59q0aSeQyW72/JW363Qf0ukHe7c:51gizdwlyCA59qRSnh2/0se7c
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource Wind.exe
Files
-
Wind.exe.exe windows:4 windows x64 arch:x64
Password: a
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
Sections
.text Size: 3.0MB - Virtual size: 3.0MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ