Static task
static1
Behavioral task
behavioral1
Sample
rSOLARITEMS.exe
Resource
win7-20230220-en
General
-
Target
rSOLARITEMS.exe
-
Size
1.1MB
-
MD5
f747fd55f18cbfe63505b8e597fcd47f
-
SHA1
bb48bdaeaf3bb2173d34e20995297a87aaef0afa
-
SHA256
fd4b7a99c9e1425af888702bce5c88c071edfd4e0d1cbae52aa4c637b7fde738
-
SHA512
95b712fec52af9b04d76aa642b6f3c8ae696c8238eaabc0611f2530b61080b3a039a7144cd53a961170c61f92b4c1441bb262b0faee24665ec9b478b7fe410f4
-
SSDEEP
24576:FuOZ6wGkB+e9uf8mSFOAGYP8d9mTpNRaHvmLbokha:smOAJ49i8OQ
Malware Config
Signatures
Files
-
rSOLARITEMS.exe.exe windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 1.1MB - Virtual size: 1.1MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 11KB - Virtual size: 11KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ