Static task
static1
Behavioral task
behavioral1
Sample
A1058AA81F864F5E80A4EAE87182A30F.exe
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
A1058AA81F864F5E80A4EAE87182A30F.exe
Resource
win10v2004-20230220-en
General
-
Target
A1058AA81F864F5E80A4EAE87182A30F.MAL_decrypted
-
Size
5.0MB
-
MD5
75ac0e13352b1115226bd7767dcc413a
-
SHA1
1e2192952d82fc82c12ddf8311469ad334242f07
-
SHA256
2c945370434f3a992637ddd5b30d1224de6b057d389095cfb67bf62fd919c1f7
-
SHA512
71d9ff7ade53dbd198d80e93da10ec8670cf1f79daa717bd9c7a834f3c48c07b82a396b9413517614323880b58b89fcf77bb4a0dd223f585f563501c47f43ecd
-
SSDEEP
49152:dGEc/1DSdisgWiCPPtNbTvYd99LariZrByAcsK6wUlVHrl7:gspPrv0P1l9p
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource A1058AA81F864F5E80A4EAE87182A30F.MAL_decrypted
Files
-
A1058AA81F864F5E80A4EAE87182A30F.MAL_decrypted.exe windows x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
.xray Size: 5.0MB - Virtual size: 5.0MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE