Static task
static1
Behavioral task
behavioral1
Sample
f700a3aecc0229163f39fea344c3ced6.exe
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
f700a3aecc0229163f39fea344c3ced6.exe
Resource
win10v2004-20230220-en
General
-
Target
f700a3aecc0229163f39fea344c3ced6.exe
-
Size
675KB
-
MD5
f700a3aecc0229163f39fea344c3ced6
-
SHA1
fbc95ce6a605fa4904d17b7403ba39195919ee59
-
SHA256
2be71dbd5717aadd41efe306affff9fb63675adb1dd4f1a5a7b5d123c4ba508b
-
SHA512
fe3bc48b2eb1275bae7aa43c74fe751f4777812a26b37678c5a48c38aa3ee3613c7990b5d3127a140a6f9d351cba242edf6d76d1b7ffdb2021c0c66c498e77a1
-
SSDEEP
12288:O/R7DNXIEiAgnycthytTNCRMyp6ZWe9bk+7IQpMjx:iXNYfBnyOQtJJypYhBMjx
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource f700a3aecc0229163f39fea344c3ced6.exe
Files
-
f700a3aecc0229163f39fea344c3ced6.exe.exe windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 672KB - Virtual size: 672KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ