Static task
static1
Behavioral task
behavioral1
Sample
c8fab2420e415b0fbf6150db06489423e2a1c2c157f5d358da778f9f8b40810b.exe
Resource
win7-20230831-en
Behavioral task
behavioral2
Sample
c8fab2420e415b0fbf6150db06489423e2a1c2c157f5d358da778f9f8b40810b.exe
Resource
win10v2004-20230915-en
General
-
Target
c8fab2420e415b0fbf6150db06489423e2a1c2c157f5d358da778f9f8b40810b
-
Size
2.0MB
-
MD5
0941a4fa0970b79ef40ed40477f44d84
-
SHA1
21c98ed736dfb59d82d2282df064b2c5910c334a
-
SHA256
c8fab2420e415b0fbf6150db06489423e2a1c2c157f5d358da778f9f8b40810b
-
SHA512
9fa4c85ded7f4d4d27cda37ae673463d649d6249191762fba31121164ecebdd6055873f93b023fef1a7131e712c06526c4e9ec7c147d81f657e6395ef5bd6226
-
SSDEEP
24576:WgTx6i2SglpO5Y1uFfFPstldQ23X5IzekGE+5PKhGTelgkBV9bJPH3MolTJyQ3Oi:Lgi5Ht+CUpI7+N9o9fN
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource c8fab2420e415b0fbf6150db06489423e2a1c2c157f5d358da778f9f8b40810b
Files
-
c8fab2420e415b0fbf6150db06489423e2a1c2c157f5d358da778f9f8b40810b.exe windows:4 windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 1.9MB - Virtual size: 1.9MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 101KB - Virtual size: 101KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ