dcPrevent[.]exe | Triage

Submit
Reports

Static

static

1

Sharing

Copy URL Twitter E-mail

Static task

static1

General

Target

dcPrevent.exe
Size

337KB
MD5

c4cf24bbcafd61dbd7966fcddd7245ff
SHA1

678c269c8c52d9c18e89cd96e0220b4ab1f33778
SHA256

8ec87466941fb8449c463f0538ddca37fe7bf55b80b22a40885b2e1768a58843
SHA512

23a17a6f16975a24beeedb73c630e4439edbeeb5e1d548eaa55d89fa389adb6700e5936bb5a45e2815dae6509053345535c5057cc8aef0351b703a0032d23d48
SSDEEP

768:/IgywWmtguGFQRpO2888y8888888881nnnnnnnnaFFFFFFFFFMMMMMMqqqp8888P:/IAzgbQRp9WzNtIzXWzNtIzkH

Score

1^/10

Malware Config

Signatures

Files

dcPrevent.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Code Sign

43:3c:f3:9a:20:4e:3e:9b:4b:0f:d1:f4:cd:2b:f1:8c
Certificate

Issuer

CN=DESKTOP-AUNIEUB\\zohay

Not Before

29/03/2021, 22:50

Not After

30/03/2022, 04:50

Subject

CN=DESKTOP-AUNIEUB\\zohay

50:75:49:08:a1:5c:32:cd:a8:49:0c:1f:57:4e:34:da:65:84:6a:7d:9f:fe:9b:85:b0:e5:cb:71:b7:d5:4c:3d
Signer

Actual PE Digest

50:75:49:08:a1:5c:32:cd:a8:49:0c:1f:57:4e:34:da:65:84:6a:7d:9f:fe:9b:85:b0:e5:cb:71:b7:d5:4c:3d

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\zohay\source\repos\right click dcprevent\dcPrevent\dcPrevent\obj\Debug\dcPrevent.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 335KB - Virtual size: 334KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 956B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy