Static task
static1
Behavioral task
behavioral1
Sample
db6c98502919eff6fc8f5d84bc18e9c05cece30c5378b99fcad784b08a414e77.exe
Resource
win7-20230712-en
Behavioral task
behavioral2
Sample
db6c98502919eff6fc8f5d84bc18e9c05cece30c5378b99fcad784b08a414e77.exe
Resource
win10v2004-20230703-en
General
-
Target
db6c98502919eff6fc8f5d84bc18e9c05cece30c5378b99fcad784b08a414e77
-
Size
3.3MB
-
MD5
b3b7ada6483fb6f91af29b6dd6ecbfea
-
SHA1
a0c0b6e26f5e964075c8f1d6f02f1293dcfbb50e
-
SHA256
db6c98502919eff6fc8f5d84bc18e9c05cece30c5378b99fcad784b08a414e77
-
SHA512
a56239ed885aa5408df8ca99e8c391aee40151496c544856469e9f916022fcb29eac6749d57e0ff3e19f18e2edafd3a0809b96341d6af60885cb952c50f8d8b4
-
SSDEEP
49152:mmD1wyVu6kLS4U/DiaJ0de0r2AJisyYy20QkTu5dPkLoJjWWh:Xwv6kw/eJNHy2z+LoJjWWh
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource db6c98502919eff6fc8f5d84bc18e9c05cece30c5378b99fcad784b08a414e77
Files
-
db6c98502919eff6fc8f5d84bc18e9c05cece30c5378b99fcad784b08a414e77.exe windows x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.Upack Size: - Virtual size: 148KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 25KB - Virtual size: 56KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE