Open source ui (2)[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

Open source ui (2).zip
Size

325KB
MD5

b56523254590c4b95fbd6b81d9b0de64
SHA1

de7d125f86489ef86e28c8b1b2de0b703969f1d3
SHA256

74c716644223c9a8b2b32140ddf3be46014eaa3e85973a732228c0643c4c3285
SHA512

7baa2e5a675e329ee211bdaa1ddb378a966516f8d9688a8861eca80cbf38cb7d50a5c826e4cfcc69e4d0d8769d86857fc4c9c6e87ca0abf2fe0dd3640763b630
SSDEEP

6144:sVR2L6KFoIroMEBoqJAVnBSODV1jKODQi6Jh02yOC8QRdkZHGPlvrgzmnJ//+zFk:I6HeIrREmBHR7jKfJh/fQR4HGlvrgqIC

Score

3^/10

Malware Config

Signatures

Unsigned PE 3 IoCs

Checks for missing Authenticode signature.

resource
unpack001/NoMoreLife Executor/NoMoreLife Executor/bin/Debug/ICSharpCode.AvalonEdit.dll
unpack001/NoMoreLife Executor/NoMoreLife Executor/bin/Debug/NoMoreLife Executor.exe
unpack001/NoMoreLife Executor/NoMoreLife Executor/obj/Debug/NoMoreLife Executor.exe

Files

Open source ui (2).zip
.zip
NoMoreLife Executor/.vs/NoMoreLife Executor/FileContentIndex/1c4b67b7-b7aa-469f-a76d-fcdfbe56b75c.vsidx
NoMoreLife Executor/.vs/NoMoreLife Executor/FileContentIndex/45f9582d-e0d5-480e-97ca-ae2e46c2c44f.vsidx
NoMoreLife Executor/.vs/NoMoreLife Executor/FileContentIndex/4bdcc1c0-dd74-438c-b732-3bb1f143a58e.vsidx
NoMoreLife Executor/.vs/NoMoreLife Executor/FileContentIndex/bee38451-c2bc-4b3a-aac7-3071fafee490.vsidx
NoMoreLife Executor/.vs/NoMoreLife Executor/v17/.suo
NoMoreLife Executor/NoMoreLife Executor.sln
NoMoreLife Executor/NoMoreLife Executor/App.config
NoMoreLife Executor/NoMoreLife Executor/App.xaml
NoMoreLife Executor/NoMoreLife Executor/App.xaml.cs
NoMoreLife Executor/NoMoreLife Executor/MainWindow.xaml
NoMoreLife Executor/NoMoreLife Executor/MainWindow.xaml.cs
NoMoreLife Executor/NoMoreLife Executor/NoMoreLife Executor.csproj
NoMoreLife Executor/NoMoreLife Executor/Properties/AssemblyInfo.cs
NoMoreLife Executor/NoMoreLife Executor/Properties/Resources.Designer.cs
.vbs
NoMoreLife Executor/NoMoreLife Executor/Properties/Resources.resx
.vbs
NoMoreLife Executor/NoMoreLife Executor/Properties/Settings.Designer.cs
NoMoreLife Executor/NoMoreLife Executor/Properties/Settings.settings
NoMoreLife Executor/NoMoreLife Executor/bin/Debug/ICSharpCode.AvalonEdit.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\a\AvalonEdit\AvalonEdit\ICSharpCode.AvalonEdit\obj\Release\net45\ICSharpCode.AvalonEdit.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 601KB - Virtual size: 601KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
NoMoreLife Executor/NoMoreLife Executor/bin/Debug/NoMoreLife Executor.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\HP\source\repos\NoMoreLife Executor\NoMoreLife Executor\obj\Debug\NoMoreLife Executor.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
NoMoreLife Executor/NoMoreLife Executor/bin/Debug/NoMoreLife Executor.exe.config
NoMoreLife Executor/NoMoreLife Executor/bin/Debug/NoMoreLife Executor.pdb
NoMoreLife Executor/NoMoreLife Executor/obj/Debug/.NETFramework,Version=v4.7.2.AssemblyAttributes.cs
NoMoreLife Executor/NoMoreLife Executor/obj/Debug/App.g.cs
NoMoreLife Executor/NoMoreLife Executor/obj/Debug/App.g.i.cs
NoMoreLife Executor/NoMoreLife Executor/obj/Debug/DesignTimeResolveAssemblyReferences.cache
NoMoreLife Executor/NoMoreLife Executor/obj/Debug/DesignTimeResolveAssemblyReferencesInput.cache
NoMoreLife Executor/NoMoreLife Executor/obj/Debug/MainWindow.baml
NoMoreLife Executor/NoMoreLife Executor/obj/Debug/MainWindow.g.cs
NoMoreLife Executor/NoMoreLife Executor/obj/Debug/MainWindow.g.i.cs
NoMoreLife Executor/NoMoreLife Executor/obj/Debug/NoMoreLife Executor.csproj.AssemblyReference.cache
NoMoreLife Executor/NoMoreLife Executor/obj/Debug/NoMoreLife Executor.csproj.CoreCompileInputs.cache
NoMoreLife Executor/NoMoreLife Executor/obj/Debug/NoMoreLife Executor.csproj.FileListAbsolute.txt
NoMoreLife Executor/NoMoreLife Executor/obj/Debug/NoMoreLife Executor.csproj.GenerateResource.cache
NoMoreLife Executor/NoMoreLife Executor/obj/Debug/NoMoreLife Executor.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\HP\source\repos\NoMoreLife Executor\NoMoreLife Executor\obj\Debug\NoMoreLife Executor.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
NoMoreLife Executor/NoMoreLife Executor/obj/Debug/NoMoreLife Executor.g.resources
NoMoreLife Executor/NoMoreLife Executor/obj/Debug/NoMoreLife Executor.pdb
NoMoreLife Executor/NoMoreLife Executor/obj/Debug/NoMoreLife Executor_MarkupCompile.cache
NoMoreLife Executor/NoMoreLife Executor/obj/Debug/NoMoreLife Executor_MarkupCompile.i.cache
NoMoreLife Executor/NoMoreLife Executor/obj/Debug/NoMoreLife Executor_MarkupCompile.i.lref
NoMoreLife Executor/NoMoreLife Executor/obj/Debug/NoMoreLife Executor_MarkupCompile.lref
NoMoreLife Executor/NoMoreLife Executor/obj/Debug/NoMoreLife_Executor.Properties.Resources.resources

Sharing

General

Malware Config

Signatures

Files

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

mscoree

Sections

.text Size: 601KB - Virtual size: 601KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 12B

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

mscoree

Sections

.text Size: 11KB - Virtual size: 11KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 12B

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

mscoree

Sections

.text Size: 11KB - Virtual size: 11KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 12B

.text
Size: 601KB - Virtual size: 601KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 11KB - Virtual size: 11KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 11KB - Virtual size: 11KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 12B