g:\ACS\ksEditor\obj\PublicEditor\ksEditor.pdb
Static task
static1
1 signatures
General
-
Target
ksEditor.exe
-
Size
89KB
-
MD5
5490408bc9b474bd937358e26777509d
-
SHA1
7a2a60bab9dc1d2ddf3ea65199d0922f613411fa
-
SHA256
9a6e2c9812108a86780a56408df5b9ccf81c1a08303af84f0dc52e91cd98700b
-
SHA512
7a4f6e6d1cd2171b04288c934ca14ea90bac6934876424ec9523fe6b1b331e1f88451c040c970c7608344c3047499678bbef151b36c93f605d3817ba969a7b1e
-
SSDEEP
1536:PE2z3KhhfwT9/f9ue7NrOChNeU9S6aJXUj/dwltQBZJMT9G7DFibkz/TyqhDawQX:Zz3KhhfARf9ue7NrOChNeU9S6aJXUj/E
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource ksEditor.exe
Files
-
ksEditor.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 86KB - Virtual size: 86KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ