Static task
static1
Behavioral task
behavioral1
Sample
6c6c5961d48f6cf1ec3518a44920922214e75b9c2c3e4666bcac8b40724577da.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
6c6c5961d48f6cf1ec3518a44920922214e75b9c2c3e4666bcac8b40724577da.exe
Resource
win10v2004-20220901-en
General
-
Target
6c6c5961d48f6cf1ec3518a44920922214e75b9c2c3e4666bcac8b40724577da
-
Size
15KB
-
MD5
5500367d8a10b3f00f718327823026dc
-
SHA1
9e8b9b92187a2ea4228647bfe2de99cb65353f36
-
SHA256
6c6c5961d48f6cf1ec3518a44920922214e75b9c2c3e4666bcac8b40724577da
-
SHA512
6f5333182ea79ed24b5e3b3617cdbc05b3209362cbcd6f0f319804390d858ab0b70d157fb58c7c9c5e0f5d562e8f7ef49e2cf17932c71e9a5c1d6a16f85428af
-
SSDEEP
384:MY9qSbTSxnqCptYcFmVc03KYdkw8JN77hhNkFu:MY9qSbT0qmtYcFmVc6KXT3hH7
Malware Config
Signatures
Files
-
6c6c5961d48f6cf1ec3518a44920922214e75b9c2c3e4666bcac8b40724577da.exe windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Code Sign
04:ad:25:45:ce:e8:53:b6:50:8e:4c:eb:8d:95:9d:21:c4:52Certificate
IssuerCN=R3,O=Let's Encrypt,C=USNot Before16-09-2022 19:59Not After15-12-2022 19:59SubjectCN=kcsoftwares.com7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12Certificate
IssuerCN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=USNot Before12-01-2016 00:00Not After11-01-2031 23:59SubjectCN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12Certificate
IssuerCN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=USNot Before23-12-2017 00:00Not After22-03-2029 23:59SubjectCN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
dc:94:6a:b1:59:04:78:63:be:c2:54:1e:00:9f:0f:3d:28:6a:d1:9f:2b:9b:ca:ce:40:62:f6:86:d2:cc:a9:e7Signer
Actual PE Digestdc:94:6a:b1:59:04:78:63:be:c2:54:1e:00:9f:0f:3d:28:6a:d1:9f:2b:9b:ca:ce:40:62:f6:86:d2:cc:a9:e7Digest Algorithmsha256PE Digest MatchestrueSignature Validations
TrustedfalseVerification
Signing CertificateCN=kcsoftwares.com30-11-2022 02:25 Valid: false
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 5KB - Virtual size: 5KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ