VirtualMonitorHelper[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

VirtualMonitorHelper.exe
Size

48KB
MD5

d084a383f339b3fe7d7954efbe9c1203
SHA1

2b19a7aad76155bac5d4a4c65e218d4f49c7790e
SHA256

8fa3b37491a74aae4ba585e0f4555d289b3be0d9d30ebca0529ed449c58fea8b
SHA512

19fa59e95fa46e205772752f7f103a9b9346d34ec304a13889cb8556f9d0de9d1541faa085f38f8fd2e29cc1476890859a2b67d1aca9dc312d2ebf6b993c8de9
SSDEEP

384:MhNbkBL2DbyERv6OCkPkvwwwq6u/+Z+xIoc5tuOUsxi3hDs:ylikvFE+Z+xxc5tu/sxYho

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
VirtualMonitorHelper.exe

Files

VirtualMonitorHelper.exe
.exe windows:4 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\Weeb Labs\source\repos\Virtual Monitor Helper\VirtualMonitorHelper\obj\Release\Virtual Monitor Helper.pdb

Sections

.text
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ