C:\Users\Senad\source\repos\Duopestrol\Release\Duopestrol.pdb
Static task
static1
1 signatures
General
-
Target
Duopestrol.exe
-
Size
19KB
-
MD5
825bf55ba7cf397d66467915323ca59a
-
SHA1
875e6fa8a025fec55529b3fa5acc7c04b2780c17
-
SHA256
805f56b78d6cba294ea0c9b51ddadd2c3bf8cd8f87da54734e35b6f2a29e6aed
-
SHA512
fb58f75faeabe7063b42a330d87af43792af2ce556990cdfdbb34ec260d4bbf7a610ab5da76c90923ac75f02a2a6d4e8cd47cc5bf1fd689c5ba7995ec437f2bc
-
SSDEEP
384:Nq9ceyhy5pCBictu4eyhsJ53oO92pdvRqNbJXjoFVG5gFzwaU73qmff9:N9hOMUsCdV92pdvRgbeFVPFnU7BH
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource Duopestrol.exe
Files
-
Duopestrol.exe.exe windows:6 windows x86 arch:x86
c82ea3e72cc42fe7323cdd43adc99b2b
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
kernel32
InitializeSListHead
IsDebuggerPresent
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
VirtualAlloc
ExitProcess
GetProcAddress
CreateThread
LoadLibraryW
CloseHandle
TerminateThread
GetTickCount64
Sleep
GetModuleHandleW
UnhandledExceptionFilter
user32
GetDC
MessageBoxW
GetWindowRect
GetSystemMetrics
DrawIcon
LoadIconW
EnumChildWindows
SendMessageTimeoutW
LoadCursorW
ReleaseDC
SetCursorPos
InvalidateRect
GetDesktopWindow
gdi32
SetBkMode
CreateCompatibleDC
StretchBlt
PlgBlt
GetBitmapBits
DeleteDC
SetTextColor
TextOutA
SetBitmapBits
SelectClipRgn
SetStretchBltMode
DeleteObject
CreateSolidBrush
CreateEllipticRgn
CreateBitmap
CreateFontA
BitBlt
SelectObject
winmm
waveOutOpen
waveOutClose
waveOutUnprepareHeader
waveOutPrepareHeader
waveOutWrite
vcruntime140
memset
__current_exception_context
__current_exception
_except_handler4_common
api-ms-win-crt-utility-l1-1-0
rand
api-ms-win-crt-runtime-l1-1-0
_c_exit
_initialize_onexit_table
_register_onexit_function
_cexit
_crt_atexit
_controlfp_s
terminate
__p___argv
__p___argc
_register_thread_local_exe_atexit_callback
_exit
exit
_initterm_e
_configure_narrow_argv
_initterm
_set_app_type
_seh_filter_exe
_get_initial_narrow_environment
_initialize_narrow_environment
api-ms-win-crt-math-l1-1-0
_libm_sse2_sin_precise
__setusermatherr
api-ms-win-crt-stdio-l1-1-0
__p__commode
_set_fmode
api-ms-win-crt-locale-l1-1-0
_configthreadlocale
api-ms-win-crt-heap-l1-1-0
_set_new_mode
Sections
.text Size: 10KB - Virtual size: 10KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 6KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 512B - Virtual size: 916B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 480B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 1024B - Virtual size: 968B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ