Static task
static1
Behavioral task
behavioral1
Sample
PO NO. LT230822.exe
Resource
win7-20230712-en
Behavioral task
behavioral2
Sample
PO NO. LT230822.exe
Resource
win10v2004-20230703-en
General
-
Target
PO NO. LT230822.img
-
Size
90KB
-
MD5
96d736a79226db5f1abc81592151b046
-
SHA1
8417c339791f379624fdf7ff209200427d8c724e
-
SHA256
9ea608327cfd97072577dda57c626c0b022d70fd7f03e81c7cd48455b4ae9244
-
SHA512
4ebaa808f8780070d53cdbfdee3cb35e129a28a13d48356b851ceeaf708265c5e6ab27332c6e0cb05ee226a4e01460c1a0ef3cc1488a59ce78d9ff22cf46ba49
-
SSDEEP
768:gPRDK3EaC8l2hP3SScNY8cfRqTuM+1+M:cDK3Eaqh36G8BTugM
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource unpack001/PO NO. LT230822.exe
Files
-
PO NO. LT230822.img.iso
-
PO NO. LT230822.exe.exe windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 34KB - Virtual size: 34KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ