Static task
static1
Behavioral task
behavioral1
Sample
e7c0f1c7d8be3a2927c65cbdf4a2f0dd835b4bcf81eea19a00e50d1fc1a191d9.exe
Resource
win7-20230220-en
General
-
Target
e7c0f1c7d8be3a2927c65cbdf4a2f0dd835b4bcf81eea19a00e50d1fc1a191d9
-
Size
644KB
-
MD5
f1af018a2abde6c99bf5804181485dbe
-
SHA1
752fe437cc1d88f7a7d3726a343485adcd98d4cd
-
SHA256
e7c0f1c7d8be3a2927c65cbdf4a2f0dd835b4bcf81eea19a00e50d1fc1a191d9
-
SHA512
65d69213e5bfc0e94dea072a518f784052e2fe59890a2688b886d48130664bb41d95ca07047be42f3eebecd3522651bb377cda9a2f219f6870e0debe79816fde
-
SSDEEP
12288:uFWVF4zUktye4I80ail1zjOPyxoaEefbpr/ACAv93z7PiOK:u4VS5tn40aI1mP4oFeDpr/+v93XaOK
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource e7c0f1c7d8be3a2927c65cbdf4a2f0dd835b4bcf81eea19a00e50d1fc1a191d9
Files
-
e7c0f1c7d8be3a2927c65cbdf4a2f0dd835b4bcf81eea19a00e50d1fc1a191d9.exe windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 634KB - Virtual size: 634KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 8KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ