Static task
static1
Behavioral task
behavioral1
Sample
Aternos_FireWall.ZIP.exe
Resource
win7-20230703-en
General
-
Target
Aternos_FireWall.ZIP.exe
-
Size
465KB
-
MD5
cbb9af3a1ffa54f3c9283d817a5ea940
-
SHA1
7025eec1bf5de80c5e6d56c05b247bc7c3034a81
-
SHA256
d1ca6d352783888105d20726e83bf8e5290a060f651cc9076f4cb294d6003c23
-
SHA512
e495c403ac9dbee3c77427cdcf59191272b64ad43735105812b5f904d240c9c6f53cae7b5e5dd756e2e2c664de39dd1fc159c0fe9e5bed533b4fa798d651c9ff
-
SSDEEP
6144:3C1v9bjAua9cu00lYk66PWx1Xn3xQA7lUhcX7elbKTua9bfF/H9d9n:36JUDgk7Py1X3p3X3u+
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource Aternos_FireWall.ZIP.exe
Files
-
Aternos_FireWall.ZIP.exe.exe windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 298KB - Virtual size: 297KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 166KB - Virtual size: 166KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ