c:\rje\tg\\obj\Release\ojc.pdb
Static task
static1
1 signatures
General
-
Target
Bootstrapper.exe
-
Size
310KB
-
MD5
5c0beac39ef87947c586e96c76065ff0
-
SHA1
bf6ff681eb3043b46f23fd511dc903c4d27d2dcb
-
SHA256
2727fb1da4f04b21be89c9b95c3164bfdae41c7a73779aef02c7bac6f9e36e38
-
SHA512
3f4b8b7a7b297aa8872d53fd4325a7b9ec5525639066c564e8794a3e0ea926c32e3e9eaf24c1379b3fd19c3d6c4fbfdfec0faf8e6b1118e7b635fa1a4472784a
-
SSDEEP
6144:xADCPOEpVWs4s+2BwS3Viqx+CC18vp0+DBZohhAajRqIRYcGVYFO/VHY:xpPOEDL4s+2BJFiqZCwu+gvAaE+Mh
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource Bootstrapper.exe
Files
-
Bootstrapper.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 308KB - Virtual size: 307KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ