| File Path | Type and Hashes |
|---|
| Match Rules |
|---|
| File Name: | neofetch.exe |
| File Type: | PE32+ executable (console) x86-64, for MS Windows |
| SHA1: | 744f9e241070e7ab43f6cb834420d2ba763a405a |
| MD5: | d6b10fe0f03dc8bdf3cd5ec9e4e3d305 |
| First Seen Date: | 2024-09-30 14:23:36.839565 ( ) |
| Number of Clients Seen: | 4 |
| Last Analysis Date: | 2024-09-30 14:23:36.839565 ( ) |
| Human Expert Analysis Date: | 2024-09-30 19:13:06.421274 ( ) |
| Human Expert Analysis Result: | Clean |
| Property | Value |
|---|---|
| magic literal enum | 2 |
| file type enum | 7 |
| debug artifacts | [] |
| number of sections | 19 |
| trid | [] |
| compilation time stamp | 0x66F06665 [Sun Sep 22 18:48:05 2024 UTC] |
| entry point | 0x140001125 (.text) |
| machine type | AMD64 only, not Itaniums, with 0200 - 64 bit |
| file size | 2709608 |
| ssdeep | |
| sha256 | d0786c4c6c967ba28706f92402a6151fc509b010e1d2a18f19118548bbe40393 |
| exifinfo | [] |
| mime type | application/x-dosexec |
| imphash |
| File Path on Client | Seen Count |
|---|---|
| C:\Users\test\Downloads\neofetch.exe | 1 |
| Name | Virtual Address | Virtual Size | Raw Size | Entropy | MD5 |
|---|---|---|---|---|---|
| .text | 0x1000 | 0xbb8b8 | 0xbba00 | 6.14967282202 | 826e9c889d49b538d084a406a9f0298e |
| .data | 0xbd000 | 0x2f40 | 0x3000 | 0.326309442465 | 04dfdc5bf29abe685a786f6251249903 |
| .rdata | 0xc0000 | 0x10ea0 | 0x11000 | 4.75741080557 | 90c0d6444be82ab4d614654671bc0995 |
| .pdata | 0xd1000 | 0xbf40 | 0xc000 | 5.96849186248 | 2f7b6070c92df0be8d6990d0d76234a2 |
| .xdata | 0xdd000 | 0x10cec | 0x10e00 | 4.883412714 | 03aa60eee77135cc64a643d1382e207d |
| .bss | 0xee000 | 0xd10 | 0x0 | 0.0 | d41d8cd98f00b204e9800998ecf8427e |
| .idata | 0xef000 | 0x146c | 0x1600 | 4.35309526466 | aacba69961f2fd3a31e1f813b23de13c |
| .CRT | 0xf1000 | 0x68 | 0x200 | 0.374582587812 | 914377f4789c146c5c73ed48c7df0eec |
| .tls | 0xf2000 | 0x10 | 0x200 | 0.0 | bf619eac0cdf3f68d496ea9344137e8b |
| .rsrc | 0xf3000 | 0x4e8 | 0x600 | 4.78147973762 | 1028f2a1bf91d049b71dd4b4b7d8ad7d |
| .reloc | 0xf4000 | 0x1648 | 0x1800 | 5.32526032233 | 0d6a21af08a80adbcd6660e809f24b6a |
| /4 | 0xf6000 | 0x610 | 0x800 | 2.27658082565 | ccdb2020a8c444ddc1e3131cda3e09ad |
| /19 | 0xf7000 | 0x10904 | 0x10a00 | 5.79768221558 | 1256ac538511796d4b59aed9ff989406 |
| /31 | 0x108000 | 0xc32 | 0xe00 | 4.59621591061 | 58501516bbd4e4d0ca022d663b69bbf0 |
| /45 | 0x109000 | 0x1c03 | 0x1e00 | 5.04029233621 | 7f4019ad8350d8ddb882cd208fa65690 |
| /57 | 0x10b000 | 0x19c8 | 0x1a00 | 4.05322550586 | 9c2b69d90e0a7bea91953b238bbc120f |
| /70 | 0x10d000 | 0x4ab | 0x600 | 3.97497155781 | 219ae2cf9805256acd91cf77ad4b72cd |
| /81 | 0x10e000 | 0x63d | 0x800 | 4.52222081371 | 41b0c301da188b0744221cca42faa6fe |
| /97 | 0x10f000 | 0x402 | 0x600 | 3.31495450062 | eab3a73416f75a197fe4d0fcf5f065ca |
{u'lang': u'LANG_NEUTRAL', u'name': u'RT_MANIFEST', u'offset': 995416, u'sha256': u'a73f26a8d504043f785d7360e8febf2eeb8522ec873a0d4dd5d1d4bfd1e67d3d', u'type': u'XML 1.0 document, ASCII text', u'size': 1167}