Static task
static1
Behavioral task
behavioral1
Sample
md5sum.exe
Resource
win7-20230712-en
Behavioral task
behavioral2
Sample
md5sum.exe
Resource
win10v2004-20230703-en
General
-
Target
md5sum.exe.1
-
Size
48KB
-
MD5
eb574b236133e60c989c6f472f07827b
-
SHA1
7648ec1a2d8c8b65a024973d30b4b2dc48ad0cec
-
SHA256
f21b08feaad7d2e2ec5711178856c651f67e0206d6b912025fdaa638dedf445c
-
SHA512
79ffb464696e4878bc7a5cf1454311d496759f988f2649e2db78c53ff6b5d8e3dd5b30cd266e378aa6fbabf6958e600b18823d92350497edd218106bd56f7bb1
-
SSDEEP
768:akg4blIyekeKe9eYR8CqxbtRWRn6jDoCuHkEo2QG1z0OPtb:bsNqM6jDzuHrom1z0O
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource md5sum.exe.1
Files
-
md5sum.exe.1.exe windows x86
e0dc84ff0dfc18133e1d6eb06ddb46b9
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
WideCharToMultiByte
FindFirstFileA
ExitProcess
TerminateProcess
GetCurrentProcess
HeapReAlloc
HeapAlloc
HeapFree
GetCommandLineA
GetVersion
GetLastError
SetFilePointer
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
WriteFile
FlushFileBuffers
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
ReadFile
FindNextFileA
CloseHandle
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
RtlUnwind
SetStdHandle
GetCPInfo
CompareStringA
CompareStringW
GetACP
GetOEMCP
SetEnvironmentVariableA
CreateFileA
GetProcAddress
LoadLibraryA
SetEndOfFile
Sections
.text Size: 32KB - Virtual size: 31KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 8KB - Virtual size: 10KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE