Static task
static1
Behavioral task
behavioral1
Sample
29e5d8ccffd187b6311f0efa886956a9.exe
Resource
win7-20231025-en
Behavioral task
behavioral2
Sample
29e5d8ccffd187b6311f0efa886956a9.exe
Resource
win10v2004-20231020-en
General
-
Target
29e5d8ccffd187b6311f0efa886956a9.exe
-
Size
599KB
-
MD5
29e5d8ccffd187b6311f0efa886956a9
-
SHA1
2548bc9696f9c26f5bf42f1065677208e349ad17
-
SHA256
02bfc35c02d4e7bd4ae5cc0867de4b656513e6b1335b625c13ba06ec78f5c4e8
-
SHA512
13708d91cc3f3e8d3ed2aa6736a7218665ab29b66332d37994fb3dd561fedf314762aea038373b35285e1b7aeb594c8d723148cbb0e06cd5516b9b5fae422ad9
-
SSDEEP
6144:qOTwkk65ywxtOLH3F7382G9chNFg2QGZ9LjalFi8Xs2+zIKt5lCFzvdl7tCrQDGv:qOTPJwH3R82QQ9QyAlhc2+kFzvcrCG
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 29e5d8ccffd187b6311f0efa886956a9.exe
Files
-
29e5d8ccffd187b6311f0efa886956a9.exe.exe windows:4 windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 544KB - Virtual size: 544KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
.text Size: 48KB - Virtual size: 48KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ