Static task
static1
Behavioral task
behavioral1
Sample
0630OTT231156917.exe
Resource
win7-20230220-en
General
-
Target
0630OTT231156917.exe
-
Size
1.1MB
-
MD5
31f682d265bb2bf6845a98e383d23ede
-
SHA1
5978686177e06c001204be8aef86ccc28fd92db5
-
SHA256
b1dac250b790090d75044bf149fb5e5372fed13d4c44999e4653a159d96c63b0
-
SHA512
2b3c14ddd9f078b9836e27c6c0e98e1e65b836fd503ff78c16e4db236702cd01b15fc482dc45813a791ab7f6c994e9e6d33e74e2dfafc43630743986c3ce0946
-
SSDEEP
24576:lX/LaVUH999yvrVq6UDWlR83Kt3Ffqcbo/DHXWRV89LJ+hD1P8:xTBH9yvrJmWlQK9FfvU7XIV89Lu0
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 0630OTT231156917.exe
Files
-
0630OTT231156917.exe.exe windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 1.1MB - Virtual size: 1.1MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ