43231

BENIGN

Mal-ecule

Size 441.0 KB download

First seen 51 days ago

Analyzed 40 days ago

Ecosystem pe-machine-learning-dataset

Objectives

anti-static/obfuscation WININET.DLL absent from PE import table

evasion/indicator-removal Export timestamp is absent

anti-analysis/debugger-detect Minimal PE import DLL count (<= 3)

anti-static/obfuscation/binary-metrics Binary has normal code entropy (>5.5)

anti-static/obfuscation/payload Regex component marker

anti-static/pack Near-maximum entropy in .text section

command-and-control/dropper/staging Binary contains high-entropy data regions

command-and-control/infrastructure Binary has 4 or fewer sections

evasion/masquerade/version-resource PE has no Authenticode signature

evasion/process/injection Lacks substantial resources

communications/ipc Uses named pipe IPC APIs

os/module Get current process handle

binary/metrics High code section entropy

binary/section High entropy executable section

signed Binary is not digitally signed

binary PE has exactly two resource entries

dylib::kernel32 links kernel32.dll (CreateNamedPipeW, GetCurrentProcess, GetUserDefaultLangID)

dylib::ole32 links ole32.dll (CoRegisterInitializeSpy)

dylib::user32 links user32.dll (GetMessageExtraInfo)

lang/compiler Native runtime has huge functions

20 of 29 traits shown

SHA-256	2b52bcf15c4854d049cf3826d6d2f65e76c7cf66740f8c3b4a2f2aa377e619b6
Filename	43231

Ecosystem	pe-machine-learning-dataset

First seen	1 May 2026 09:47 UTC
Last analyzed	12 May 2026 10:05 UTC

Not seeing what you expected? Let us know