Static task
static1
Behavioral task
behavioral1
Sample
e1d6a8e67f465568eeb709fb16daf9d6adc5e3ed1a3345c3a7f306a8f1040032.exe
Resource
win7-20230831-en
Behavioral task
behavioral2
Sample
e1d6a8e67f465568eeb709fb16daf9d6adc5e3ed1a3345c3a7f306a8f1040032.exe
Resource
win10v2004-20230915-en
General
-
Target
e1d6a8e67f465568eeb709fb16daf9d6adc5e3ed1a3345c3a7f306a8f1040032
-
Size
2.9MB
-
MD5
6804bedcb765a850fdcc593db721084d
-
SHA1
8bec7a3d212019ee1c392995c2a4ef2e32cf6c9d
-
SHA256
e1d6a8e67f465568eeb709fb16daf9d6adc5e3ed1a3345c3a7f306a8f1040032
-
SHA512
f226f3ce8e2386a962da24d83a3d4c6945b02c62462ab6810bbe91849728a62b135a1b865445a4c5bf265a59ee46d25f28b7cdddae6b9afafe6261b129c06c88
-
SSDEEP
49152:H7TvfU+8X9GrNOsva5RbKhF3ANkTTl/+ha+A/cLx6h:c+8X9G3vP3AMw3lLch
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource e1d6a8e67f465568eeb709fb16daf9d6adc5e3ed1a3345c3a7f306a8f1040032
Files
-
e1d6a8e67f465568eeb709fb16daf9d6adc5e3ed1a3345c3a7f306a8f1040032.exe windows:5 windows x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 994KB - Virtual size: 994KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 147KB - Virtual size: 146KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 27KB - Virtual size: 37KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 386KB - Virtual size: 385KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 75KB - Virtual size: 74KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ