MantiWPFInstaller[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

MantiWPFInstaller.exe
Size

4.0MB
MD5

c84b2f0898d7f3c9f504ec5850926296
SHA1

2169702a4d048f3336bd178f82e2aa2743f7cc9a
SHA256

f93b42a9a8b6fa9604202df92c83ec4ba4ff39f49a4a4dee5a4ad6fe6bede74a
SHA512

453c56130327ba83e73bc6b7e41b65be7974139ac0c0056864340f5aa5eda675ebf37379a2ca0b94146872c9408b964dcc4915a0c805face7a9501f3703d7b1f
SSDEEP

49152:dgizdwlyCA59qRSnh2/0se7cO4oipTD0anywJAaD/3U2p:dgizsyCU2bewvJpTIWymAM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
MantiWPFInstaller.exe

Files

MantiWPFInstaller.exe
.exe windows:4 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\chemi\Desktop\ \vsc\MantiWPFInstaller\MantiWPFInstaller\obj\x64\Debug\MantiWPFInstaller.pdb

Sections

.text
Size: 4.0MB - Virtual size: 4.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ