Eclipse[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Eclipse.exe
Size

433KB
MD5

4c8a1047ebb097f8aaebaf53a043fb31
SHA1

961c9823814fb94f64faa838ae54005188e7da35
SHA256

fb258a85bc03c639c9884def26909030ba9b451146ba784869f8eb8875fc9e82
SHA512

97056b9714a3550c5f3c7b126df81e590a8b1849f120cb7b9ab762cc0d098fa9a9f4e5f63cedb4a109cb18c1d39d88c7c565aca9c42a4ab0fcf0dfc1a0187f98
SSDEEP

12288:TREkD5DFr/cp9gxh/xiAa5HLL4UYUdcpc3RrC2HErD59I:TR1vUbXkrDnI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Eclipse.exe

Files

Eclipse.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\attationin\Documents\projects\Patrick-Crypter-Update\Patrick-Crypter-Stub\Patrick-Crypter-Stub\obj\Release\net4.6-windows\WinFormApp.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 367KB - Virtual size: 366KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ