C:\Users\Fanta\source\repos\FantaMultiTool\obj\Release\FantaMultiTool.pdb
Static task
static1
1 signatures
General
-
Target
FantaMultiTool.exe
-
Size
24.7MB
-
MD5
c56857eb8872c72ea5a8ea210c62ad8a
-
SHA1
e8a79318d6365518fa4791626d6000431fa8ae6c
-
SHA256
88658aad98103b8f6d6d8967c1b869953b81ff9c3b4cee945cf52c02aa4c77c2
-
SHA512
5d441f4a4243ffd922771e675a04765a6c7b0e42702dbd65747198caca26db2405599bd2a1031ae6de4cd7743f0069d7c061bb407e1db341b607ba04a098ee09
-
SSDEEP
393216:MlLOQduoXiutmNviNllSVVJKK4jjTPPAaa:To7tmNviNllQKK4jjcaa
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource FantaMultiTool.exe
Files
-
FantaMultiTool.exe.exe .vbs windows:4 windows x86 arch:x86 polyglot
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 24.7MB - Virtual size: 24.7MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ