Static task
static1
Behavioral task
behavioral1
Sample
colornames.scr
Resource
win7-20230712-en
Behavioral task
behavioral2
Sample
colornames.scr
Resource
win10v2004-20230703-en
General
-
Target
win.zip
-
Size
27KB
-
MD5
6ba5e1051937bce544e5b1d3f3f28c7a
-
SHA1
01ade7af7f82502c355865251b8a15eb8bbf9cd4
-
SHA256
d37a2365a14d7508bb257edbaf08287d75784c868c9a2ffe4c417afd6ba5bb82
-
SHA512
b1553b5136301ec0597877b545c0954308ed83e4cef58086ed7d52efa89fec7fbb1c578b787a63b2cf61339811bda4daeed1093eb813c2691960f7ad0830a326
-
SSDEEP
768:PxBxX9cajO/WqP1j4DWMKIDtclP9JJdMgh3pwZgICy:PxBUBb1j4DWJImlFuUeiICy
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource unpack001/colornames.scr
Files
-
win.zip.zip
-
__MACOSX/._colornames.scr
-
colornames.scr.exe windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Imports
mscoree
_CorExeMain
Sections
.text Size: 31KB - Virtual size: 30KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 100KB - Virtual size: 100KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ