FelixGrabberV2[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

FelixGrabberV2.exe
Size

402KB
MD5

edfff8aea9e6bfa42381d545a047630d
SHA1

c07e6daf1029f34946cccda3e741a8d871d85714
SHA256

c1be78f3ddbba2cd16c00ef59a9dcde73e1bc02c2c2186442f591a5683eb6deb
SHA512

6153c587f0cf49a2f758316086baa266fe1578a4f7549f4ef038bffb03a5304d92a2c77df15a4cbb35140d79d164b360005541f77101516a7d6ee03b11760cf9
SSDEEP

6144:p05nvFi0Nh90wjySZcAZ3G1sjacRmhHHw4/o/b714QJ8I/k73BsMIj:knvBNotU3G1sja2v4cbB42k7W

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
FelixGrabberV2.exe

Files

FelixGrabberV2.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

My App.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 239KB - Virtual size: 238KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 177B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 160KB - Virtual size: 159KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ