Static task
static1
Behavioral task
behavioral1
Sample
fa7ed15708d988e7f69b5628db9481816052efea29e93f1bd274a1d76006aee6.exe
Resource
win10v2004-20230915-en
General
-
Target
fa7ed15708d988e7f69b5628db9481816052efea29e93f1bd274a1d76006aee6
-
Size
1023KB
-
MD5
77650bc339c9c420709ca447465f164b
-
SHA1
623362fa1b8b25eb5e072db8f873486392cb464d
-
SHA256
fa7ed15708d988e7f69b5628db9481816052efea29e93f1bd274a1d76006aee6
-
SHA512
180f90f46b2ffe746bdd554b55987624f0e5c18b381dc5a43a18362e4403a155d8c1753b6038c9792e1d0bf450995cba830f5b653508491763e9a1a99605d4bb
-
SSDEEP
24576:3JorhygMajIQREzeqwEhjL5a5iT/8oTZfMy4:5SrM8HCL5Rb8oSy4
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource fa7ed15708d988e7f69b5628db9481816052efea29e93f1bd274a1d76006aee6
Files
-
fa7ed15708d988e7f69b5628db9481816052efea29e93f1bd274a1d76006aee6.exe windows:4 windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 1021KB - Virtual size: 1020KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ