Static task
static1
Behavioral task
behavioral1
Sample
00a678022041c9db1b47f981c0ddbf8bd5db66415f0a03ad1a8aa51470ed4efb.exe
Resource
win7-20230831-en
Behavioral task
behavioral2
Sample
00a678022041c9db1b47f981c0ddbf8bd5db66415f0a03ad1a8aa51470ed4efb.exe
Resource
win10v2004-20230831-en
General
-
Target
3_basta_exe_11683492311.zip
-
Size
288KB
-
MD5
d117c9e63cf10b24e15762aeab77a476
-
SHA1
d271e5a8e6af8e66727a9d3fb4f79ca7e8dbdfe0
-
SHA256
3e40fadc40a427b0b95a334b797ba9efb546cc1f0416f17ba3c08980120a2dc2
-
SHA512
df90364ff374b4ca6fd953e62dbbf632039a889509561d362a734046c929353730e94f06d2d4bcc5f0202e52d8fa66773e88b7a9bd226e205895f0b3bc7a5e3c
-
SSDEEP
6144:M2iPI0Vj06xBOg4EUydb+7J85jw8Bd/DEsgYONN:M2iA0VAkBOtpydbOJ85bjgrN
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource unpack001/00a678022041c9db1b47f981c0ddbf8bd5db66415f0a03ad1a8aa51470ed4efb
Files
-
3_basta_exe_11683492311.zip.zip
Password: infected
-
00a678022041c9db1b47f981c0ddbf8bd5db66415f0a03ad1a8aa51470ed4efb.exe windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 835KB - Virtual size: 834KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
.rsrc Size: 177KB - Virtual size: 177KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ