Heist Editor 3[.]5[.]13[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

Heist Editor 3.5.13.exe
Size

7.1MB
MD5

4dcde5b6931c088925eff336f3f768b2
SHA1

7a76a901089d9e72b82c9b305d076d8b93ae9576
SHA256

54f29199668203efad1380bf8738babdd80a799cc6ffb1f0bf91356d2c438b0a
SHA512

a75e4b6847514166f41df7b5013c0f17c6fa943aa5426105b974d0a2ade6f1965bf2f60c9f4123b96b3b224edbfb2f184974a29cc0306cf96f08debc825ef20b
SSDEEP

98304:UKBDeQ1Uk09IWIiFFIChrp7aG5yu/n1OVjv/nUBPHSFjQsBK9dpDHKBC9VPGRVvj:UMl1WFIClp735y2nIJMYp72NH39C

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Heist Editor 3.5.13.exe

Files

Heist Editor 3.5.13.exe
.exe windows:6 windows x64 arch:x64

Password: test1234

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

Size: 1.0MB - Virtual size: 2.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Size: 162KB - Virtual size: 633KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 7KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 57KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 348B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 957KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 6KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.winlice
Size: - Virtual size: 8.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.boot
Size: 4.9MB - Virtual size: 4.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 16B - Virtual size: 4KB

IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Password: test1234

Headers

DLL Characteristics

File Characteristics

Sections

Size: 1.0MB - Virtual size: 2.1MB

Size: 162KB - Virtual size: 633KB

Size: 7KB - Virtual size: 71KB

Size: 57KB - Virtual size: 100KB

Size: 512B - Virtual size: 348B

Size: 957KB - Virtual size: 1.4MB

Size: 6KB - Virtual size: 63KB

.idata Size: 1KB - Virtual size: 4KB

.tls Size: 512B - Virtual size: 4KB

.rsrc Size: 67KB - Virtual size: 67KB

.winlice Size: - Virtual size: 8.0MB

.boot Size: 4.9MB - Virtual size: 4.9MB

.reloc Size: 16B - Virtual size: 4KB

.idata
Size: 1KB - Virtual size: 4KB

.tls
Size: 512B - Virtual size: 4KB

.rsrc
Size: 67KB - Virtual size: 67KB

.winlice
Size: - Virtual size: 8.0MB

.boot
Size: 4.9MB - Virtual size: 4.9MB

.reloc
Size: 16B - Virtual size: 4KB