Static task
static1
Behavioral task
behavioral1
Sample
630d26cfc5a217f00aca669fa321754170e850655b536c8d8ecf57d4a5f259c5.exe
Resource
win7-20230831-en
General
-
Target
630d26cfc5a217f00aca669fa321754170e850655b536c8d8ecf57d4a5f259c5
-
Size
11.3MB
-
MD5
4d6da44bacdb89d36328cabb49bc0618
-
SHA1
00b596869d2c99a5081cef81aa4d92dd0e569490
-
SHA256
630d26cfc5a217f00aca669fa321754170e850655b536c8d8ecf57d4a5f259c5
-
SHA512
9c68ddc4ed7431de1a1e45f9819878b6c78f3260722033bf631f0abfa40958f6c7023218379d294e3634dfffa668b3036de30fc1899c3d730debef21a6387ab4
-
SSDEEP
196608:NBY10so27HGzx+WgBip0YFLpnZc6vytTU+//KqkD0KAfQf3iiM9vRiu5TiRP+Weq:NBY105ikFhp0cZc6aNU7qkgX+M9ZXiRL
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 630d26cfc5a217f00aca669fa321754170e850655b536c8d8ecf57d4a5f259c5
Files
-
630d26cfc5a217f00aca669fa321754170e850655b536c8d8ecf57d4a5f259c5.exe windows:4 windows x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
xvmp1 Size: - Virtual size: 2.5MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
xvmp2 Size: 11.2MB - Virtual size: 11.2MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 7KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE