C:\Users\Fanta\source\repos\FantaMultiTool\obj\Release\FantaMultiTool.pdb
Static task
static1
1 signatures
General
-
Target
FantaMultiTool.exe
-
Size
24.7MB
-
MD5
2189a241af80496dd90ba663647f3f5b
-
SHA1
983913069363742ee10eb2b14f4f8f12003dba13
-
SHA256
038b6aa303b0c9cf343f4cf6b6197bb0dc479a17e33c69a4fc638345045a0fdf
-
SHA512
3b0aa31255af4da2380036f42a4c5ce728adfccba812bf87efc8cc2f07e43b5463dcf8afccabd78e7a293a5b774faa2c4738d90684cd37902feb619bd6d5c0a2
-
SSDEEP
393216:YlLOQduoXiutmNviNllSVVJKK4jjTPPAaa:Po7tmNviNllQKK4jjcaa
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource FantaMultiTool.exe
Files
-
FantaMultiTool.exe.exe .vbs windows:4 windows x86 arch:x86 polyglot
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 24.7MB - Virtual size: 24.7MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ