Static task
static1
Behavioral task
behavioral1
Sample
28e3560292ef1e2ba14d228a8d87b5fab8a77d1afb7116425016160b97b4ba78.exe
Resource
win7-20230831-en
Behavioral task
behavioral2
Sample
28e3560292ef1e2ba14d228a8d87b5fab8a77d1afb7116425016160b97b4ba78.exe
Resource
win10v2004-20230915-en
General
-
Target
28e3560292ef1e2ba14d228a8d87b5fab8a77d1afb7116425016160b97b4ba78
-
Size
996KB
-
MD5
c3056445ca43b4660598cad3a8d52679
-
SHA1
cc48518a4feeea0dd35f1f9a216962e588720128
-
SHA256
28e3560292ef1e2ba14d228a8d87b5fab8a77d1afb7116425016160b97b4ba78
-
SHA512
686850f44480941e8d5280d71704784564608989607d2d43564ea34e579fa514df89bbe9c7ae9512d819ef755c10424247a0904ecbc4cb0bd0eb413375efdd3e
-
SSDEEP
24576:2xYVOSASCs7H6mJW2yMK7fd2Ldjg5yDX22r49e:YbSCIHNJNqx5yDT44
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 28e3560292ef1e2ba14d228a8d87b5fab8a77d1afb7116425016160b97b4ba78
Files
-
28e3560292ef1e2ba14d228a8d87b5fab8a77d1afb7116425016160b97b4ba78.exe windows:4 windows x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.z05 Size: - Virtual size: 916KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.u70 Size: 980KB - Virtual size: 980KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rj0r Size: 14KB - Virtual size: 16KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.text Size: 512B - Virtual size: 511B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE