Static task
static1
Behavioral task
behavioral1
Sample
NEW890019928200019119882829-PDF.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
NEW890019928200019119882829-PDF.exe
Resource
win10v2004-20221111-en
General
-
Target
NEW890019928200019119882829-PDF.exe
-
Size
387KB
-
MD5
abba6f3a66795534c78e8f4a9240affe
-
SHA1
732c300ac93704f194ac403009ffb9034f5e1957
-
SHA256
66242b095b2cfb53b52d1743a42aaa9fd94c6b53f58869c4b1c9d893a541e3a6
-
SHA512
4d50f9be5418a5babf01ecc2d52b7322883700d26455243e912a3a06b496cdfeb1b8bb5a6036cfd8baa6668012b2869c04ba946936fe4f5958179e4cf266044a
-
SSDEEP
12288:PQXbWUIehwKt8+QBDGVdKOGFXMwBSVyppZ1o:4LauwKtTQBDGVdKOGFzYVD
Malware Config
Signatures
Files
-
NEW890019928200019119882829-PDF.exe.exe windows x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Sections
.text Size: 385KB - Virtual size: 384KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ