Static task
static1
Behavioral task
behavioral1
Sample
sample2.exe
Resource
win7-20231020-en
Behavioral task
behavioral2
Sample
sample2.exe
Resource
win10v2004-20231023-en
General
-
Target
sample2.exe
-
Size
666KB
-
MD5
7b87ae2e1edbc27d9667e5db168d5c81
-
SHA1
689a0ce1935ef9d4a48142103a32993378e799a5
-
SHA256
0000361f90000ceca0b05e840fca7b7cc535a0e7867207bc76fbf71a45a3788f
-
SHA512
6d8f7c830bce92321323ad12b4c897290ce638fa589581c34657f45de376e7218d96c66e822d0c7e623e4010703203b47c0d23bc35d81472f94c413856c222a5
-
SSDEEP
12288:PtKi92qgznY7UOB3/VDghP3xyrO2PjdHc8ESMmml6Y8:PJYYF3/ihP3xyCMXESMmO6
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource sample2.exe
Files
-
sample2.exe.exe windows:4 windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 663KB - Virtual size: 663KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ