Static task
static1
Behavioral task
behavioral1
Sample
DisplyyLoader-1.exe
Resource
win10v2004-20230824-en
General
-
Target
DisplyyLoader-1.exe
-
Size
1.1MB
-
MD5
df47d9513e3694cb635d67fe85717339
-
SHA1
990e52b0b6dd21d1ecdc8d734aa641f0e6020f62
-
SHA256
cd2e30e18046d8860616bc3126957f635539310bb0500eb4aab74c0d724b8ffa
-
SHA512
edfe1b2f753c680b871981ee851a612a6a7667ff08b7606fa32fe3184c16dab6a27898b0076750ec29d369ae6c705472b68f09c6de1bb0ab7b0976fac7e837ed
-
SSDEEP
24576:zmu/7AezpG9r+E7ToJFGb0qaHgj5NNkzhJlGRpVa6uNLhfoSURFr:9Aezper+E7H0qaHg/NkzhzGrh+oHRp
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource DisplyyLoader-1.exe
Files
-
DisplyyLoader-1.exe.exe windows x64
Password: 123
1201cb3515ac72d7195270bf0f878b94
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Imports
advapi32
RegisterEventSourceA
kernel32
GetModuleHandleA
shell32
SHGetIconOverlayIndexA
user32
CreateWindowExA
Sections
Size: - Virtual size: 880KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
Size: - Virtual size: 622KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Size: - Virtual size: 14KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1024B - Virtual size: 860B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Size: 104KB - Virtual size: 103KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE