Static task
static1
Behavioral task
behavioral1
Sample
SW768453.exe
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
SW768453.exe
Resource
win10v2004-20230220-en
General
-
Target
2554873578B0BF2BABB2098304DD6FBDBE69AA5F628DF8D28F13709EE21D163D
-
Size
1.5MB
-
MD5
daa3ef1fc8f2064e806bdcdcce46be20
-
SHA1
2b9efa3af9a95ff9f874b0cc620bbf47c619db86
-
SHA256
2554873578b0bf2babb2098304dd6fbdbe69aa5f628df8d28f13709ee21d163d
-
SHA512
9dea9cbb2c98ce0d7e6ec96ba609862d580b3b5843af7b7c81e0f8b96602934aff824e7bf8821102ddcf339c82d9c8c6ce4f47c35f8eeafcb1df1034f4325b73
-
SSDEEP
12288:kMuOAqXdmDjWAnzBmL7a14CwH9CcQc5nWdGwLNMMtqEoV3bDtCatnP9ncEdzz1K1:WC0zqlHUcQc5nWdGEMM4ECPn1bv
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource unpack001/SW768453.EXE
Files
-
2554873578B0BF2BABB2098304DD6FBDBE69AA5F628DF8D28F13709EE21D163D.iso
-
SW768453.EXE.exe windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 974KB - Virtual size: 973KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 7KB - Virtual size: 7KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ