C:\Users\urasmabenle\source\repos\payloadenc\encryption\obj\Release\encryption.pdb
Static task
static1
Behavioral task
behavioral1
Sample
89b20fda870386450c8a192193a3bb0828a50862a001144287b5f003c893ba75N.exe
Resource
win7-20240903-en
General
-
Target
89b20fda870386450c8a192193a3bb0828a50862a001144287b5f003c893ba75N.exe
-
Size
130KB
-
MD5
3a4e90bbe28369ece2cea39def076600
-
SHA1
7c98e396393a2ae95905b68f741705fef03a618d
-
SHA256
89b20fda870386450c8a192193a3bb0828a50862a001144287b5f003c893ba75
-
SHA512
e4236c707b8288a9b94669fe73925a9bf46e84c430b9bb743322861827b7dbc56793f199ecbdb42a1123f939279e140573822a57d722f0172958231ec0f158b3
-
SSDEEP
3072:RQNUZEL5p/oJ/+08cowfSnZVfWNlI/XennJ2F+8qld17JdGi4yyscf:2r/oxptoISZlWNlImnJK+OBv
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 89b20fda870386450c8a192193a3bb0828a50862a001144287b5f003c893ba75N.exe
Files
-
89b20fda870386450c8a192193a3bb0828a50862a001144287b5f003c893ba75N.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 127KB - Virtual size: 127KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ