Static task
static1
Behavioral task
behavioral1
Sample
601b39537d1843e0d889da56fa4e399628647dd40e2cc19ba5360e3e49888b21.exe
Resource
win7-20230712-en
Behavioral task
behavioral2
Sample
601b39537d1843e0d889da56fa4e399628647dd40e2cc19ba5360e3e49888b21.exe
Resource
win10v2004-20230703-en
General
-
Target
601b39537d1843e0d889da56fa4e399628647dd40e2cc19ba5360e3e49888b21
-
Size
3.2MB
-
MD5
955f295f5f52518d8b5211bc37e20a63
-
SHA1
189c2bd547165cc2ce7b1b9f019f452360cf30bd
-
SHA256
601b39537d1843e0d889da56fa4e399628647dd40e2cc19ba5360e3e49888b21
-
SHA512
e1e9ee22bd8b7dff14d7439f722a8b610c64941bb7ddda8e365fdc86cd8d0b926d68ea1499bc7480b5fbb4f43ad7ad077cbc366e94b2f55b06072a09174fda85
-
SSDEEP
98304:QQgWcq+eEu+coYZCy4mPGGyea5zPSRbrsz4VcCL:XMq+eEAPeGyeaArs4JL
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 601b39537d1843e0d889da56fa4e399628647dd40e2cc19ba5360e3e49888b21
Files
-
601b39537d1843e0d889da56fa4e399628647dd40e2cc19ba5360e3e49888b21.exe windows x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.VIP80 Size: - Virtual size: 5.5MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.VIP81 Size: 3.2MB - Virtual size: 3.2MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.VIP82 Size: - Virtual size: 6KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE