DiscordIP_Puller[.]exe | Triage

Sharing

General

Target

DiscordIP_Puller.exe
Size

858KB
MD5

09893350bce547088d0786e8dd187e68
SHA1

0cf7701bee198c69265bcef41158cac36b2a77ef
SHA256

6a4bf0a4ba8d3bc2378a1965ecc6216effb2731ca2ba897147228474b59e208d
SHA512

b6ca519711cd1c10a8f3fb15b84d7a65799cbad8afa03601b4526751b8885045e25c473a32430e4028fb08a3fcf367f1b636e8a503c5a6108ff1e3a982af050b
SSDEEP

24576:vRt1P8oIPyBSn6TsUqpTSXxySn6LOG6srt:vZMPWSnvPsxrn6q2rt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
DiscordIP_Puller.exe

Files

DiscordIP_Puller.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\User\source\repos\DiscordIP Puller\DiscordIP Puller\obj\Debug\DiscordIP Puller.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 856KB - Virtual size: 855KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ