C:\Users\teres\AppData\Local\Temp\Report.A66214F7-6635-4084-8609-050NK772EXE\obj\Debug\five_toolConsole.pdb
Static task
static1
Behavioral task
behavioral1
Sample
0af5c49133422030899cfe674dfd6e26301237f2dc5f34e52db1bee2187d5b10.exe
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
0af5c49133422030899cfe674dfd6e26301237f2dc5f34e52db1bee2187d5b10.exe
Resource
win10-20240404-en
General
-
Target
0af5c49133422030899cfe674dfd6e26301237f2dc5f34e52db1bee2187d5b10
-
Size
2.3MB
-
MD5
73b6456450d11b9eac05b4e58aabe8a5
-
SHA1
0074cd03e2f02eb1511046b1489190973adf6f34
-
SHA256
0af5c49133422030899cfe674dfd6e26301237f2dc5f34e52db1bee2187d5b10
-
SHA512
5eb7cea71b0b77e9645a66acd739ae9adc8ced2818edc38e5d8827d9f431657f2e8c7297ed43f37a47216c78b459bcae4015b9396321f57d2960d6989ca7e328
-
SSDEEP
49152:m/LB+rYPZ14KMqpvK0nyckxBThGcfQj9wpF3:m/9cB2Fu/pF3
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 0af5c49133422030899cfe674dfd6e26301237f2dc5f34e52db1bee2187d5b10
Files
-
0af5c49133422030899cfe674dfd6e26301237f2dc5f34e52db1bee2187d5b10.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 2.2MB - Virtual size: 2.2MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.sdata Size: 512B - Virtual size: 312B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 148KB - Virtual size: 148KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ