Static task
static1
Behavioral task
behavioral1
Sample
SecuriteInfo.com.Trojan.DownLoaderNET.759.6980.12573.exe
Resource
win7-20230831-en
Behavioral task
behavioral2
Sample
SecuriteInfo.com.Trojan.DownLoaderNET.759.6980.12573.exe
Resource
win10v2004-20230915-en
General
-
Target
SecuriteInfo.com.Trojan.DownLoaderNET.759.6980.12573.exe
-
Size
109KB
-
MD5
c7bd753950a1aaaf860d79ab0cdd472f
-
SHA1
b00c396d1bfdc7c1e657ca863acc05fda593525e
-
SHA256
839b5edf9f07ddaea5738ee4e1ca0e58bc8193ff874e0106440c8725d806c401
-
SHA512
b80b33c4f85107bd8e30d45302efe9829b55e7533aa55ca74a207dd403d6e22adf88b0cb340b34effe502d45eadbee1b5a0f3cf780244c014883abc5a34eee97
-
SSDEEP
1536:YVpqvK98grguo/MRHxZSbDC0BkSWfk/HDjmUbUadiJdN/+Cs2774y:YyvKygUuuQHxq20eQfDyUpdiDN3R77L
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource SecuriteInfo.com.Trojan.DownLoaderNET.759.6980.12573.exe
Files
-
SecuriteInfo.com.Trojan.DownLoaderNET.759.6980.12573.exe.exe windows:4 windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 106KB - Virtual size: 106KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ