Static task
static1
Behavioral task
behavioral1
Sample
Halkbank_Ekstre_20230509_081046_266669.exe
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
Halkbank_Ekstre_20230509_081046_266669.exe
Resource
win10v2004-20230220-en
General
-
Target
Halkbank_Ekstre_20230509_081046_266669.exe
-
Size
868KB
-
MD5
f9ec7c48df3ec2f3a4f3a49a06944c36
-
SHA1
d7b43c5e28a438ad93d8c9ec5b7268cab138c7c0
-
SHA256
773487046d018f6263a41e61d0387dbe6570096212418e29ea9de596d19ca08b
-
SHA512
620a5559ae1aa9f59683bb3e3ac9c5184dda99bd7091c55d5facecac35273f276dc772f7589b2a20aab5eb857f0005f38161d32092270a2af90eb20838a050f0
-
SSDEEP
12288:3Nj5Aykd8PIvY1rvPwnthrZ26Ujw0rF54Gv9pAraUWGMWdmipNJ:3351T4n7A6UZrF2GvXAeUWGOip
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource Halkbank_Ekstre_20230509_081046_266669.exe
Files
-
Halkbank_Ekstre_20230509_081046_266669.exe.exe windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 576KB - Virtual size: 576KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 291KB - Virtual size: 290KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ