Static task
static1
Behavioral task
behavioral1
Sample
b6457c8e13ae03d7fd5c7c2026f3a6b65131995c6d72208ceef09540766995ae.exe
Resource
win7-20230831-en
Behavioral task
behavioral2
Sample
b6457c8e13ae03d7fd5c7c2026f3a6b65131995c6d72208ceef09540766995ae.exe
Resource
win10v2004-20230915-en
General
-
Target
b6457c8e13ae03d7fd5c7c2026f3a6b65131995c6d72208ceef09540766995ae
-
Size
1.1MB
-
MD5
9e363ddc6555939d4d20c04acc5fded9
-
SHA1
278e1bcd7392d7d3ded763dfd84695655bf013ab
-
SHA256
b6457c8e13ae03d7fd5c7c2026f3a6b65131995c6d72208ceef09540766995ae
-
SHA512
a8846f65e274e65cf35e64b7a6fdc6894089cf4d5e9870e6a5ba9a3b790b44c7413962a3db797e45678b6a9e96ca11b025c882a3e7e19a903df47a812adbd310
-
SSDEEP
12288:3P60zydpKqlLSk68vkoJWpkQjvopLRns3TJnYVdpKqlLSk68vkoJWpkQjOopLRn7:xyxRhhEpkRyTAxRhhEpkWBT
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource b6457c8e13ae03d7fd5c7c2026f3a6b65131995c6d72208ceef09540766995ae
Files
-
b6457c8e13ae03d7fd5c7c2026f3a6b65131995c6d72208ceef09540766995ae.exe windows:4 windows x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Sections
.text Size: 670KB - Virtual size: 669KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 458KB - Virtual size: 457KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ