GDI1[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

GDI1.exe
Size

9KB
MD5

a96922de14a14d36d6493825d5d0ec98
SHA1

3fd7fdb77f49cba539533c8a95cc01322952d4a8
SHA256

1e229d2a2953ecb2c13d9a0dee8d318ad322094e60a356f71d79dfa40e91fe8f
SHA512

be19570e1a531eaa1bfe9ace43a4973b0ccdf7aaced85cb570d3afb19a426b9a21e2e55410ea90256249180dca6d6575b60a703f7694001b6dd388c24da68665
SSDEEP

192:W0C+dukXuVS1HVH0Z5eJk/C1SuTVdK8XTa0due:A6z5cneJk/CMuTVdxXJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
GDI1.exe

Files

GDI1.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\Straqbery\source\repos\GDI1\GDI1\obj\Debug\GDI1.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ