Static task
static1
Behavioral task
behavioral1
Sample
ac6e643d7a21b7bdc79a749aabc30d7c54fc02e08a7a6a40ce71d472e3611105.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
ac6e643d7a21b7bdc79a749aabc30d7c54fc02e08a7a6a40ce71d472e3611105.exe
Resource
win10v2004-20220812-en
General
-
Target
ac6e643d7a21b7bdc79a749aabc30d7c54fc02e08a7a6a40ce71d472e3611105
-
Size
756KB
-
MD5
3ebe850377e3258d0b8f63e2d2f1cb30
-
SHA1
0a93afbf0a1684c140e159dcda1f1b7336501d59
-
SHA256
ac6e643d7a21b7bdc79a749aabc30d7c54fc02e08a7a6a40ce71d472e3611105
-
SHA512
22ff7581945abed82b22428276bc1a0e9fb96f5b854b4651a8a7ad0321c6c70787134056ce4181c4cd0f299944b4a7a2cb3736966d566b4937777c8a7929298e
-
SSDEEP
12288:I3qBtw2tZ/gDOiWzZx8U9tzLqUTODF/9hKBycUzGpgvFtb7lgZ:I3qLptZIAkoh4ZnHTSZ
Malware Config
Signatures
Files
-
ac6e643d7a21b7bdc79a749aabc30d7c54fc02e08a7a6a40ce71d472e3611105.exe windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Code Sign
5a:00:cd:dd:32:d3:90:a0:44:53:00:78:e6:81:6a:ccCertificate
IssuerCN={90A4A49C-0599-418C-99D7-B1513341D256}Not Before15-03-2014 14:18Not After15-03-2015 20:18SubjectCN={90A4A49C-0599-418C-99D7-B1513341D256}20:e6:f7:b9:41:d9:5b:af:0c:89:2d:84:c6:1b:9b:94:14:5c:97:e7Signer
Actual PE Digest20:e6:f7:b9:41:d9:5b:af:0c:89:2d:84:c6:1b:9b:94:14:5c:97:e7Digest Algorithmsha1PE Digest MatchestrueSignature Validations
TrustedfalseVerification
Signing CertificateCN={90A4A49C-0599-418C-99D7-B1513341D256}29-09-2022 18:51 Valid: false
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 753KB - Virtual size: 753KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 992B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ