C:\Users\catwickuh\Desktop\Heal\Heal\Catwickuh Template\obj\Release\Heal.pdb
Static task
static1
1 signatures
General
-
Target
Heal (3).dll
-
Size
79KB
-
MD5
ca845db478902730e9af0df3cd644a38
-
SHA1
3c4dcb2b0c94c8ae53b13ad9679541f1171041ac
-
SHA256
2af2201d642677ad9e1a861a826759dffc6148866c6d462e7afa755dba769072
-
SHA512
0969856c5953f44d2d7c70a1d028a5cc6f9af4178f917bd166c40451ae18820e77881b64dd4b52d647c0665afe41ea6954a12feaa2c16dab591b4533205fcc5e
-
SSDEEP
1536:uC90FYxQXKDDpMpwYXbIm2XyYYXTlwqPwtQmr3ZpqST:uCCYxQXKDDphxiYYXTlw+wtQk3ZMST
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource Heal (3).dll
Files
-
Heal (3).dll.dll windows:4 windows x86 arch:x86
dae02f32a21e03ce65412f6e56942daa
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
PDB Paths
Imports
mscoree
_CorDllMain
Sections
.text Size: 77KB - Virtual size: 76KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 912B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ