Static task
static1
Behavioral task
behavioral1
Sample
667.exe
Resource
win7-20231020-en
Behavioral task
behavioral2
Sample
667.exe
Resource
win10v2004-20231023-en
General
-
Target
667.exe
-
Size
28KB
-
MD5
56e4b9c493995baf2ef199ffef3f94bd
-
SHA1
fbda0a267f6ac748704d3b7c32f7c67ce4266a2a
-
SHA256
ace2f1d6d215cb6e1233d27a2d2d15199fc2c5ae7bacb187b8b546d3b17c5926
-
SHA512
48cd1f882f4c3e4835a67ae7aba24efa589cff7985f0a66d84379b5337f2298c29a84380400869d6a841d8cf2f4317e3b80bab524eea730fbfaf9636d638aa9b
-
SSDEEP
384:guyUxVIJrT6kw1lUp7aZhJUDsldyKEqyPIK8SC3sY75Y+wGIQlWqj8zf7V+y6hTl:guypT6kwrbvJUIlzEqS17mTVogUfTgt
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 667.exe
Files
-
667.exe.exe windows:4 windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 26KB - Virtual size: 25KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ