f:\mw\Speed\Pc\Install\shell_inst\shell_inst\Release\shell_inst.pdb
Static task
static1
1 signatures
General
-
Target
shell_inst.exe
-
Size
40KB
-
MD5
515173bba58f25aff51802f1fec6f10b
-
SHA1
be54d9dc19a2899e421008186f3e84c2fd307942
-
SHA256
0c125958dc0191e59cbd1f68335674ad4a3e42f46f502eab980e4899bbd7bead
-
SHA512
27749ee760f6ce7b4339990ce0f7491ad1a4a1f9780cd28cb4ac82ef69cc641def02ba81f4ee98de896a3060df9b5f7fb6c1bc82d4ab7399196aa4b2df1a7ba7
-
SSDEEP
384:Xvhsy/oVUky2tkhzZAwy0M3wTYpYBRMbad3vM1H8YSDoKb2BlxhLNYKvtlwS:Xvay/odyYfrwUpYAW01chUKb+Zj1l
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource shell_inst.exe
Files
-
shell_inst.exe.exe windows:4 windows x86 arch:x86
5f6b222674cf165a23760662adc9c695
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
kernel32
MultiByteToWideChar
LocalFree
FormatMessageA
VirtualProtect
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
ExitProcess
GetModuleHandleA
GetCommandLineA
GetVersionExA
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
HeapAlloc
GetProcAddress
TerminateProcess
GetCurrentProcess
WriteFile
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetLastError
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
HeapFree
LoadLibraryA
RtlUnwind
InterlockedExchange
VirtualQuery
VirtualAlloc
HeapReAlloc
FlushFileBuffers
GetACP
GetOEMCP
GetCPInfo
SetFilePointer
CloseHandle
HeapSize
SetStdHandle
LCMapStringA
LCMapStringW
GetSystemInfo
ole32
CoUninitialize
CoCreateInstance
CoInitialize
Sections
.text Size: 24KB - Virtual size: 20KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 8KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 7KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE