Static task
static1
Behavioral task
behavioral1
Sample
5aff1db8f4c749933cd8869e1e80f000e4c27de7c0c7a7d1aa59c4f324522210.exe
Resource
win7-20230712-en
Behavioral task
behavioral2
Sample
5aff1db8f4c749933cd8869e1e80f000e4c27de7c0c7a7d1aa59c4f324522210.exe
Resource
win10v2004-20230703-en
General
-
Target
5aff1db8f4c749933cd8869e1e80f000e4c27de7c0c7a7d1aa59c4f324522210.exe
-
Size
613KB
-
MD5
740e2966f0bb96982a15acf39b361819
-
SHA1
d89ead114739085e2c99fdb584e207f4398531fb
-
SHA256
5aff1db8f4c749933cd8869e1e80f000e4c27de7c0c7a7d1aa59c4f324522210
-
SHA512
253f60c4f1afe14fe117667f8ea6cbabd7a582601352f9f2bd7cb19bd249181159e188992a541cdaf8222beb4049f383ab1305b0a9e9cb3a35bb0123062dc0b2
-
SSDEEP
12288:df2iN2GULU3/zZ409voNtgsP/qhtpk26vlqw2+XNsiGCBS:df1xULU3/zbU/4pR6sw2+X2iXS
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 5aff1db8f4c749933cd8869e1e80f000e4c27de7c0c7a7d1aa59c4f324522210.exe
Files
-
5aff1db8f4c749933cd8869e1e80f000e4c27de7c0c7a7d1aa59c4f324522210.exe.exe windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 610KB - Virtual size: 610KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ