f5b8a1b6e7bab370987c848be46e9b68e3527fd576a36319673bd8a8bc778d8e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f5b8a1b6e7bab370987c848be46e9b68e3527fd576a36319673bd8a8bc778d8e
Size

878KB
MD5

cfe365badffd7ce42d52df0591e2753b
SHA1

518a94e03cbbc06d88d2f581d0862016a1cd6843
SHA256

f5b8a1b6e7bab370987c848be46e9b68e3527fd576a36319673bd8a8bc778d8e
SHA512

fe78a2e73d041e33cc8839f0b1523043385012cbbc3effd72a1e18256463ba40a7dfae89020387d90332e1cc4c91136c58626494068bf4891f10cd3ffa88613d
SSDEEP

12288:nDVC7YNVISYr7YNVISYi7YNVISYS7YNVISYuSY1KISYL:Dc8PWr8PWi8PWS8PWuxMWL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f5b8a1b6e7bab370987c848be46e9b68e3527fd576a36319673bd8a8bc778d8e

Files

f5b8a1b6e7bab370987c848be46e9b68e3527fd576a36319673bd8a8bc778d8e
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\AtmanNg\OneDrive\Visual Studio Project\WFCL\obj\Debug\WFCL.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 720KB - Virtual size: 719KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 157KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ