Static task
static1
General
-
Target
a她L公GYUA P望n顾Tu
-
Size
560KB
-
MD5
d2be40aef7fffed876df6b326fd9b614
-
SHA1
f201b0e79ee0f97593ad38e4742a13f7e1d1bf3d
-
SHA256
0d4724d7ec710b32144bb94ee07640ce3f9888c8240d1dd00105bf05ae11752b
-
SHA512
dcd462241290018f9e4297cba24aa103edee7c033053799aefc8ae371a952245eed314ad9024500face50b01a20d0d0a2f51a4970f46a212d808d2628a4e1a9b
-
SSDEEP
12288:DEJFDJEM+SZhQ/vlcSy1NNDlcxn32DXYtoisg8z8h7k6BHzmz5tqzFPkfOPf31QV:IJlRwNHqN1OBGDXh
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource a她L公GYUA P望n顾Tu
Files
-
a她L公GYUA P望n顾Tu.exe windows:4 windows x86
476f92c8f9ddbcb805cdc5c61fbc5635
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
ntdll
NtContinue
Sections
Size: 557KB - Virtual size: 556KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ