Static task
static1
Behavioral task
behavioral1
Sample
SecuriteInfo.com.Win32.RATX-gen.3335.exe
Resource
win7-20230831-en
Behavioral task
behavioral2
Sample
SecuriteInfo.com.Win32.RATX-gen.3335.exe
Resource
win10v2004-20230915-en
General
-
Target
SecuriteInfo.com.Win32.RATX-gen.3335.11028
-
Size
505KB
-
MD5
819efccd1afb4ae62170f52a54f62ea9
-
SHA1
bb19bb66f5e85871ef3c5e7da40f0199341a462c
-
SHA256
c5de366fb77c67ffc4f8daa348f10e4dbd9e68287427943c25a7112b467b89eb
-
SHA512
53c477992a65a359032ee25bb3aba08234cfb47bfba5e3af301831389cc7b67ae5e46cae6032951c09479a5c077936837efab018a76489dda5fc1fe1d2af0d1f
-
SSDEEP
12288:i88spTz5nBm8xsKG2UiyIMwAcK8TXCfgSK7uTnY+6ji6uB4C6QBJOCpp:v5nJdGFifac3cTP6duBp
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource SecuriteInfo.com.Win32.RATX-gen.3335.11028
Files
-
SecuriteInfo.com.Win32.RATX-gen.3335.11028.exe windows:4 windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 502KB - Virtual size: 502KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ