Extracted

• ba477ff6700bf67d4c70cd5aaa2f5420N.exe

  .exe windows:4 windows x86 arch:x86

  f34d5f2d4577ed6d9ceec516c1f5a744

  
  

  Code Sign

  27:1b:28:40:bb:59:10:97:48:7d:ae:e8:eb:6e:8d:3c

  Certificate

  Issuer

  CN=Animalises,O=Bleaker Monodic Inc.,C=TN,1.2.840.113549.1.9.1=#0c177a6f6f6e736571756974616e7440676d61696c2e636f6d

  Not Before

  10/09/2021, 21:00

  Not After

  17/09/2031, 21:00

  Subject

  CN=Animalises,O=Bleaker Monodic Inc.,C=TN,1.2.840.113549.1.9.1=#0c177a6f6f6e736571756974616e7440676d61696c2e636f6d

  45:e1:ac:b3:68:bb:83:80:d2:a3:eb:95:4d:ce:18:7b:36:16:e5:41

  Signer

  Actual PE Digest

  45:e1:ac:b3:68:bb:83:80:d2:a3:eb:95:4d:ce:18:7b:36:16:e5:41

  Digest Algorithm

  sha1

  PE Digest Matches

  false

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  IMAGE_DLLCHARACTERISTICS_NO_SEH

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  Imports

  mscoree

  _CorExeMain

  Sections

  .text

  Size: 110KB - Virtual size: 109KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rsrc

  Size: 2KB - Virtual size: 1KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 1024B - Virtual size: 12B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ