C:\Users\You\Desktop\Hacking stuff\virusthing\obj\Debug\virusthing2.pdb
Static task
static1
Behavioral task
behavioral1
Sample
458593810dc256bbc2aa7e756deab2b201acc3966c8144a9098e5c02ab0eee03N.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
458593810dc256bbc2aa7e756deab2b201acc3966c8144a9098e5c02ab0eee03N.exe
Resource
win10v2004-20241007-en
General
-
Target
458593810dc256bbc2aa7e756deab2b201acc3966c8144a9098e5c02ab0eee03N
-
Size
574KB
-
MD5
e39790d2164de5008c336fed365a3510
-
SHA1
eeeb523b1c7e956312e07cdf1456e021978a6b9e
-
SHA256
458593810dc256bbc2aa7e756deab2b201acc3966c8144a9098e5c02ab0eee03
-
SHA512
0a8ee2ec841ee3898899c8f41bc427aa4b6e674931ca4ee7a544be4c180fb1974df3acdfdb9e48336619086e2e7d2d778603d37b7b06fe7cec8501ba76906c27
-
SSDEEP
12288:/pW2IoioS6p8IReqYIiYkYAY6YLYr5bVY4:/qon8
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 458593810dc256bbc2aa7e756deab2b201acc3966c8144a9098e5c02ab0eee03N
Files
-
458593810dc256bbc2aa7e756deab2b201acc3966c8144a9098e5c02ab0eee03N.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 134KB - Virtual size: 133KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 5KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ