Resubmissions
16/05/2022, 21:28
220516-1bjs8adagn 7Static task
static1
General
-
Target
0020a5cf402cd2680afb2d39e45a516b4cc506e54945b9783c081ec09a04e30c
-
Size
227KB
-
MD5
6c2fffe2978c6e8e391e70992224a9be
-
SHA1
42b98ee7eda6bb9bfbd4d8a3c2acea04ac192502
-
SHA256
0020a5cf402cd2680afb2d39e45a516b4cc506e54945b9783c081ec09a04e30c
-
SHA512
01e59912cb34ff88fe3a863d9ac71939bee850c8eff1da5df4bfdeccff14a62a1f4c3b8e9a8ce8f204be0b42be84df0d18f4260784fbc9e5fc4ebe9b56fc7f08
-
SSDEEP
6144:U4lwZ40243s0gJvyTZaPYZeHF/tIzi+Tk98i9goc8VRtDkYf:7n0d8PJvyQYZelVIziveo/RtT
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 0020a5cf402cd2680afb2d39e45a516b4cc506e54945b9783c081ec09a04e30c
Files
-
0020a5cf402cd2680afb2d39e45a516b4cc506e54945b9783c081ec09a04e30c.exe windows x86
8ffc31bccd11f7f873be952d93bdc291
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree
advapi32
RegOpenKeyExW
oleaut32
SysAllocStringLen
mscoree
CorBindToRuntimeEx
Sections
.text Size: 214KB - Virtual size: 540KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 6KB - Virtual size: 8KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 512B - Virtual size: 512B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE