C:\Users\eliza\source\repos\Backwdsm\Backwdsm\obj\Release\Backwdsm.pdb
Static task
static1
1 signatures
General
-
Target
Backwdsm.exe
-
Size
48.4MB
-
MD5
689417163c5dda4c6cbba2cc6e8f9d5d
-
SHA1
78a469e72a48f4e5fcb7b370d331f8c4959c6ffa
-
SHA256
20738d4b536829804e7f9d953a463a78e5e131edabc3456c770dbc77cebc7050
-
SHA512
ddb55e04ca5eeb4d1e60104da96e34ec88801bf3f767b2403f28b54e23150f5f9d15e3c1c6c448ae7f461a2e12ad70b433efcfc10c11d56b61d1a912c9ded2b1
-
SSDEEP
1572864:hFA6HzuYdXuV2Ixm6hsVLtiySy2SLJTneOZL5Y:hquqYdZI7EXSWFTnpZ1
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource Backwdsm.exe
Files
-
Backwdsm.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 48.0MB - Virtual size: 48.0MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 387KB - Virtual size: 386KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ