Static task
static1
Behavioral task
behavioral1
Sample
SandboxTestPacked_SandboxDetection_VMDevicesNames.exe
Resource
win7-20230712-en
Behavioral task
behavioral2
Sample
SandboxTestPacked_SandboxDetection_VMDevicesNames.exe
Resource
win10v2004-20230703-en
General
-
Target
SandboxTestPacked_SandboxDetection_VMDevicesNames.exe
-
Size
123KB
-
MD5
f789b9286c2215c0b5cab110b37164ad
-
SHA1
624ae954fe7baa9ec626aafc146cadfd4acd142e
-
SHA256
ada5d4c447711d065f39d69f44fb353583ceb9dbda4e1c4acb4c3b56af89e92d
-
SHA512
0ef6818a2f796bec727941223e3222bc1af8e0fa17cf64551f335a087c2dd798f0cb48ab2c476574055848bbf16a85a6787c3467b98bb0dc8b9bf680c6c2afc9
-
SSDEEP
3072:9Q3Heyq1Ao0DL10NHDzlotSKc6CzchSdR085qkO:9oZqCowLwHDz29J7i285bO
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource SandboxTestPacked_SandboxDetection_VMDevicesNames.exe
Files
-
SandboxTestPacked_SandboxDetection_VMDevicesNames.exe.exe windows x64
41d4b0e8c263d05fe6131904608f8458
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED
Imports
kernel32
GetModuleHandleA
GetProcAddress
user32
GetSystemMetrics
ole32
CoInitializeEx
oleaut32
VariantClear
ws2_32
gethostbyname
shlwapi
StrStrIW
setupapi
SetupDiGetClassDevsW
Sections
.MPRESS1 Size: 119KB - Virtual size: 328KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.MPRESS2 Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 472B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE