802487e929d09da4a0af094c88b9a4f5dfe06eab5ffb3d8efe96b664190f5ff8

Summary

Architecture IMAGE_FILE_MACHINE_AMD64
Subsystem IMAGE_SUBSYSTEM_WINDOWS_CUI
Compilation Date 2026-Apr-22 19:21:05
Comments
CompanyName
FileDescription Injector
FileVersion 1.0.0.0
InternalName CustomLoader.Injector.exe
LegalCopyright Copyright © 2026
LegalTrademarks
OriginalFilename CustomLoader.Injector.exe
ProductName Injector
ProductVersion 1.0.0.0
Assembly Version 1.0.0.0

Plugin Output

Suspicious The PE is possibly packed. The PE only has 0 import(s).
Suspicious No VirusTotal score. This file has never been scanned on VirusTotal.

Hashes

MD5 44f5ba66d0ebc0c48b770eaeef7a6b4b
SHA1 a5355fcc16dbe322c366db813806e9fd7cebe960
SHA256 802487e929d09da4a0af094c88b9a4f5dfe06eab5ffb3d8efe96b664190f5ff8
SHA3 88d8f0048b637e65befdf13c5c0cfc9f6ca578ffa47abe2eb01f8239558e84de
SSDeep 3072:0NMvnxP2OilNQEJx3lDgTnhe9moIGx0k8:3vJ2kOMTnh2moIGR
Imports Hash d41d8cd98f00b204e9800998ecf8427e

DOS Header

e_magic MZ
e_cblp 0x90
e_cp 0x3
e_crlc 0
e_cparhdr 0x4
e_minalloc 0
e_maxalloc 0xffff
e_ss 0
e_sp 0xb8
e_csum 0
e_ip 0
e_cs 0
e_ovno 0
e_oemid 0
e_oeminfo 0
e_lfanew 0x80

PE Header

Signature PE
Machine IMAGE_FILE_MACHINE_AMD64
NumberofSections 2
TimeDateStamp 2026-Apr-22 19:21:05
PointerToSymbolTable 0
NumberOfSymbols 0
SizeOfOptionalHeader 0xf0
Characteristics IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED

Image Optional Header

Magic PE32+
LinkerVersion 6.0
SizeOfCode 0x19000
SizeOfInitializedData 0x600
SizeOfUninitializedData 0
AddressOfEntryPoint 0x0000000000000000 (Section: ?)
BaseOfCode 0x2000
ImageBase 0x400000
SectionAlignment 0x2000
FileAlignment 0x200
OperatingSystemVersion 4.0
ImageVersion 0.0
SubsystemVersion 6.0
Win32VersionValue 0
SizeOfImage 0x1e000
SizeOfHeaders 0x200
Checksum 0x19d73
Subsystem IMAGE_SUBSYSTEM_WINDOWS_CUI
DllCharacteristics IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
SizeofStackReserve 0x400000
SizeofStackCommit 0x4000
SizeofHeapReserve 0x100000
SizeofHeapCommit 0x2000
LoaderFlags 0
NumberOfRvaAndSizes 16

.text

MD5 519f68f534b025f70a11b6a598b884ba
SHA1 46c561cdba4958f1de510c8e95f048f7029b18f1
SHA256 dcc278898d3fef57c44166778af08099cf5cb1313a4d960396452fdead183a28
SHA3 5394a18f5d709ecae2c94f6402f2c56fa8cb586cfe43e653db166f89ed120049
VirtualSize 0x18f4c
VirtualAddress 0x2000
SizeOfRawData 0x19000
PointerToRawData 0x200
PointerToRelocations 0
PointerToLineNumbers 0
NumberOfLineNumbers 0
NumberOfRelocations 0
Characteristics IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
Entropy 6.43375

.rsrc

MD5 cbd4d244a89b022e6ef28aed772b525b
SHA1 ba1d9a97ca0ade4101cbe8b893ee71d0302a6fac
SHA256 871bb919db64e2b51f6dcaf54ff53cf2551ec162c6816ca79598122d330e43cc
SHA3 cb6a97f4edf474b0d016984cf3a2d5240964d85930f17f4b7faffc455cbb5f0c
VirtualSize 0x5a0
VirtualAddress 0x1c000
SizeOfRawData 0x600
PointerToRawData 0x19200
PointerToRelocations 0
PointerToLineNumbers 0
NumberOfLineNumbers 0
NumberOfRelocations 0
Characteristics IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Entropy 3.98555

Imports

Delayed Imports

1

Type RT_VERSION
Language UNKNOWN
Codepage Latin 1 / Western European
Size 0x34c
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 3.27434
MD5 19eb3b652b36f13e7ca457cac2f82371
SHA1 b4dd2096d185b1919f84e2148c4144c55e45d0fd
SHA256 42dce662cd789a027d29917d6bad6f90444caa256047b20bbeeea4a081c71cf1
SHA3 112af2461caa217c772564fbdd320d6880a55b1b1fa77cfb4d24304b8ce8723d

1 (#2)

Type RT_MANIFEST
Language UNKNOWN
Codepage Latin 1 / Western European
Size 0x1b4
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 4.94168
MD5 fd46cae204161f624089374d1892677e
SHA1 c2844e969091e2abc3ededb9792e7c129c050e1c
SHA256 6a2cf379aa950dde3136a3e3ff80047923faaf69dc65c7c5af21350f6d6a2a08
SHA3 d93222de0f263dba4af4e11ddf7a21aa1a3e1c2dfcab0c130be294ac7bb409d1

Version Info

Signature 0xfeef04bd
StructVersion 0x10000
FileVersion 1.0.0.0
ProductVersion 1.0.0.0
FileFlags (EMPTY)
FileOs VOS_DOS_WINDOWS32
VOS_NT_WINDOWS32
VOS__WINDOWS32
FileType VFT_APP
Language UNKNOWN
Comments
CompanyName
FileDescription Injector
FileVersion (#2) 1.0.0.0
InternalName CustomLoader.Injector.exe
LegalCopyright Copyright © 2026
LegalTrademarks
OriginalFilename CustomLoader.Injector.exe
ProductName Injector
ProductVersion (#2) 1.0.0.0
Assembly Version 1.0.0.0
Resource LangID UNKNOWN

TLS Callbacks

Load Configuration

RICH Header

Errors

Leave a comment

No comments yet.