Static task
static1
Behavioral task
behavioral1
Sample
9d28a4f6862e4f3042ab119d79472ce7ce30fa651d08a6bf2c0cc5dacae2d95f.exe
Resource
win7-20230831-en
Behavioral task
behavioral2
Sample
9d28a4f6862e4f3042ab119d79472ce7ce30fa651d08a6bf2c0cc5dacae2d95f.exe
Resource
win10v2004-20230915-en
General
-
Target
9d28a4f6862e4f3042ab119d79472ce7ce30fa651d08a6bf2c0cc5dacae2d95f
-
Size
3.1MB
-
MD5
604d5213fd75091cfa8794d07ecef3bf
-
SHA1
4c98a8b72d279f99b3e456dfb7631ad91bc8eb97
-
SHA256
9d28a4f6862e4f3042ab119d79472ce7ce30fa651d08a6bf2c0cc5dacae2d95f
-
SHA512
107a3aa0fdd5b2c825730ba94d125d704bdbc4286619a80018d517d6a5042632e4ef6a4cc8096f7726aa5758fa2611dae8332c763ce311adcf267cceb299f87c
-
SSDEEP
49152:CG0B+Z3tzdt12o1N9oR5hvrtDMKqSC/KOyE7iFgkoY1FhxsuxO6NSLZMWg72a:0B+ZdptMo1NSR/JD9qSC/nPKd9D6ZQF
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 9d28a4f6862e4f3042ab119d79472ce7ce30fa651d08a6bf2c0cc5dacae2d95f
Files
-
9d28a4f6862e4f3042ab119d79472ce7ce30fa651d08a6bf2c0cc5dacae2d95f.exe windows:4 windows x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 4KB - Virtual size: 1.8MB
IMAGE_SCN_MEM_READ
VProtect Size: 616KB - Virtual size: 616KB
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
VProtect Size: 2.4MB - Virtual size: 2.4MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
VProtect Size: 4KB - Virtual size: 4KB
IMAGE_SCN_MEM_READ
VProtect Size: 100KB - Virtual size: 100KB
IMAGE_SCN_MEM_READ