Static task
static1
Behavioral task
behavioral1
Sample
REVISED PO -TSTC22-1011_Pdf.exe
Resource
win7-20221111-en
General
-
Target
REVISED PO -TSTC22-1011_Pdf.exe
-
Size
800KB
-
MD5
bd101f1d805750bd4b9fdeeb546efcc0
-
SHA1
fa881fdee6fbff34055e00737a3766fcd1493a1b
-
SHA256
e23943f7a0d3e8bfcb2ea6debdd990281fd94e32629db00f12b8208b668bed52
-
SHA512
cdf9db01870ead7062166a7b2075620d4aa747b0716078498e917bbb48f6729a32902f49a9d1071d67520752e7e9bffe2d2a7effa304a9acbcea5fa841e40362
-
SSDEEP
12288:SKfxkcehk1CEunCU8gJwWcGfqefprSBDgM/A:NLV1CEuCURT/mDW
Malware Config
Signatures
Files
-
REVISED PO -TSTC22-1011_Pdf.exe.exe windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 731KB - Virtual size: 731KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 68KB - Virtual size: 67KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ