Static task
static1
Behavioral task
behavioral1
Sample
ac4b88c5fdd6c740dc607ce0a898d50476cdadf9a07062deaba141ab40c3ca5e.exe
Resource
win7-20231020-en
Behavioral task
behavioral2
Sample
ac4b88c5fdd6c740dc607ce0a898d50476cdadf9a07062deaba141ab40c3ca5e.exe
Resource
win10v2004-20231023-en
General
-
Target
ac4b88c5fdd6c740dc607ce0a898d50476cdadf9a07062deaba141ab40c3ca5e
-
Size
2.7MB
-
MD5
075e8fffef10010d7627643294e1863f
-
SHA1
655f4754a979a6e90d687dbc37bd9af855e4b577
-
SHA256
ac4b88c5fdd6c740dc607ce0a898d50476cdadf9a07062deaba141ab40c3ca5e
-
SHA512
fe244b339dab1ff55e3236e52dfc80aacafa70c0bec8b0ce429cb4663863d69171931be47437a4b212aa32c1ee6ba7c3fcdb5d7e88f9b629543799b3e217d1c8
-
SSDEEP
49152:WaM+rqfYeqGq5Nv8oekYzVgc86ln/XFpl70v:U+rAqGwa7W61/X57U
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource ac4b88c5fdd6c740dc607ce0a898d50476cdadf9a07062deaba141ab40c3ca5e
Files
-
ac4b88c5fdd6c740dc607ce0a898d50476cdadf9a07062deaba141ab40c3ca5e.exe windows:4 windows x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 4KB - Virtual size: 2.1MB
IMAGE_SCN_MEM_READ
VProtect Size: 616KB - Virtual size: 616KB
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
VProtect Size: 2.0MB - Virtual size: 2.0MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
VProtect Size: 4KB - Virtual size: 4KB
IMAGE_SCN_MEM_READ
VProtect Size: 28KB - Virtual size: 28KB
IMAGE_SCN_MEM_READ