Static task
static1
Behavioral task
behavioral1
Sample
4f2de7d64c83627d32e451668ed39ddcfe55794cfeffcabd7774b18605e2b62f.exe
Resource
win7-20231023-en
Behavioral task
behavioral2
Sample
4f2de7d64c83627d32e451668ed39ddcfe55794cfeffcabd7774b18605e2b62f.exe
Resource
win10v2004-20231025-en
General
-
Target
4f2de7d64c83627d32e451668ed39ddcfe55794cfeffcabd7774b18605e2b62f
-
Size
3.2MB
-
MD5
937316c19c843daa3360956d4672c547
-
SHA1
c5c1d9419e52c7b3b0f41dd2991837dd7b60b7ee
-
SHA256
4f2de7d64c83627d32e451668ed39ddcfe55794cfeffcabd7774b18605e2b62f
-
SHA512
d993a0414754f980417a7884e9437492f04c64bd3fca758cbe0049d68b86ea2e10c2b925751f77131e5a10524d60a0f84deb6f147485be5784711b653b921afa
-
SSDEEP
12288:PTgvmzFHi0mo5aH0qMzd58E7FsXPJQPDHvd:PTgvOHi0mGaH0qSdrFsx4V
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 4f2de7d64c83627d32e451668ed39ddcfe55794cfeffcabd7774b18605e2b62f
Files
-
4f2de7d64c83627d32e451668ed39ddcfe55794cfeffcabd7774b18605e2b62f.exe windows:4 windows x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 212KB - Virtual size: 162KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 24KB - Virtual size: 13KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 164KB - Virtual size: 220KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE