Static task
static1
General
-
Target
RFQ MT-764439977_exe_PIDb48_hiddenmodule_1120000_x86.exe.bin
-
Size
848KB
-
MD5
66d8d2d5f4f79f7ba89e52ea57b064a5
-
SHA1
e5ad1def0c74daaa7e0e4c1202e47f799e4fb06c
-
SHA256
d4dbf7366fb5f3240b729d91ec5e2f21840a5ece79eee7feaeba22efbf5d19b2
-
SHA512
c4da923be47f499593941f6e2825bc1a6b4fa0c88e94cc1e07819d3457ac633e0b565947c8ea1a4d08713ef1c3fb2cbfe410d281dade736e54055de24abcd7db
-
SSDEEP
12288:apJLFFpvgnr1DeCzg4qoTMw6idj3PZlDoW5l3gyPMnCoj/UhWQRuxEwLwaP:WpFpCr1SCE412W7nwC8OWQmTc
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource RFQ MT-764439977_exe_PIDb48_hiddenmodule_1120000_x86.exe.bin
Files
-
RFQ MT-764439977_exe_PIDb48_hiddenmodule_1120000_x86.exe.bin.exe windows:4 windows x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 814KB - Virtual size: 813KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 16KB - Virtual size: 16KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ