Static task
static1
Behavioral task
behavioral1
Sample
SecuriteInfo.com.Trojan.TR.Crypt.XPACK.Gen.27226.13164.exe
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
SecuriteInfo.com.Trojan.TR.Crypt.XPACK.Gen.27226.13164.exe
Resource
win10v2004-20230220-en
General
-
Target
SecuriteInfo.com.Trojan.TR.Crypt.XPACK.Gen.27226.13164.exe
-
Size
20KB
-
MD5
3a57666d51b478547a0faeefb9a7cdba
-
SHA1
be6e8be1dbab6b7fb74760a5d218df53ed19007c
-
SHA256
9ad97385de9f24f57df58998b5f1c18d04c8fd376f66cf3ab9d4ec57de909197
-
SHA512
7e635fdc03648aa9719d72e5958f4cbec6cee0efc81059300ef7d4b9771769d9ca39b43cd0781dd754bcde02f48ee868ca4c30364a124d6f1222a3fe055954e4
-
SSDEEP
48:gxKmaqHH+VyCIr3re/cwcO/PHcRW5EMe75YY0DLDLry/MKfEfeQfoOfrh/GF9hhm:YRA4r3yEY/PHcw5Lm5YfDTlfDrhOFFI
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource SecuriteInfo.com.Trojan.TR.Crypt.XPACK.Gen.27226.13164.exe
Files
-
SecuriteInfo.com.Trojan.TR.Crypt.XPACK.Gen.27226.13164.exe.exe windows x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE