F:\Projects\WinPaletter\WinPaletter\obj\Release\WinPaletter.pdb
Static task
static1
1 signatures
General
-
Target
WinPaletter.exe
-
Size
9.3MB
-
MD5
26780dadf3ac28b87fc619e710acc548
-
SHA1
be26d8737f4b551eed11e0c6620eed2164b8af47
-
SHA256
8405e6341640123a7d8aca7886c6a98aadf9e7a1b75b5962cd4c186d8af3f2c4
-
SHA512
f96557043864ebff9ce20e6d69da05fd85b91f256d4823a38c7b610ccbbf969e9fd4f9f99a88960453781dd528219682fd10d445663dd58477ef059225655811
-
SSDEEP
196608:jJ+JBR9ImU41DVIDtNxB2RPMvGOwTLVjD:jJ+51VotNxuUvEHVX
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource WinPaletter.exe
Files
-
WinPaletter.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 9.1MB - Virtual size: 9.1MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 188KB - Virtual size: 187KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ