C:\Users\liamf\source\repos\tidaltest\obj\Debug\tidaltest.pdb
Static task
static1
1 signatures
General
-
Target
orca.exe
-
Size
6.1MB
-
MD5
8ff8c2dba169de8717fb1e8616420865
-
SHA1
2d8f6d3607246842781cd48d34b0f9ead3420312
-
SHA256
525739167d30aac06dc010d9ae68b34d4300d28e16c0d51e0dbaf59f86f064da
-
SHA512
f7f8dcd7490741da22585e0256afe71eccb6522f7471634932d08fc9a10c7b09b527820b8b762051c349a479e1a01f5f1f97adcd54df36ad54af37ac4119d3f2
-
SSDEEP
196608:jMowO9bjRmOUoe5kSI97KYODTWFnoqN3nWF6DzbTO:jMahts5kSpvTYPX
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource orca.exe
Files
-
orca.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 6.1MB - Virtual size: 6.1MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 6KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ