ffd00dd8cf8920277ee6532aeb7f2321c3c798f5e2987c9dae8bcf6e3cc3a0b2

General

Target

ffd00dd8cf8920277ee6532aeb7f2321c3c798f5e2987c9dae8bcf6e3cc3a0b2
Size

314KB
MD5

263387100fe0f4ececfea6baab0bf543
SHA1

04a032b81fa403cb4366936a2addd05633912396
SHA256

ffd00dd8cf8920277ee6532aeb7f2321c3c798f5e2987c9dae8bcf6e3cc3a0b2
SHA512

086399b41c82988be5cdecc718939e55259ea489de7ecb7d3eb1198db97cc0550451a11290c0b9d2aa2d61b28c8173792ff47b0d6d1b9ff700847ad350121a72
SSDEEP

6144:5Zf30xxdcWlQyJOF+vDaySrjWtvFEgYrGjAhXSGbGK/HoPOOhXQdI+e2:T3qjQh+ve7AvFYrsAhXSpK/IGOOdI+e2

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/3c002d7d7bfb83b56c94765d3f1cd9182993dabe4442e8f506fbe76334a01995

ffd00dd8cf8920277ee6532aeb7f2321c3c798f5e2987c9dae8bcf6e3cc3a0b2
.zip

Password: infected
3c002d7d7bfb83b56c94765d3f1cd9182993dabe4442e8f506fbe76334a01995
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Administrator\Desktop\Newapp\Newapp\obj\Debug\Newapp.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 354KB - Virtual size: 353KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 164KB - Virtual size: 163KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ