Static task
static1
Behavioral task
behavioral1
Sample
Confirmation!!.exe
Resource
win7-20231023-en
General
-
Target
NEAS.ad654aeceeb0af81e68181bb70bfe413527895eb4b23b378bb084129f9ae1a0c.rar
-
Size
548KB
-
MD5
fd911a09072768bd06c35f6107822be5
-
SHA1
8aaf3f3e9517410d5f613742f5f05a1e7820b1bc
-
SHA256
ad654aeceeb0af81e68181bb70bfe413527895eb4b23b378bb084129f9ae1a0c
-
SHA512
911294705814cb348126020aa39fd7d46a13ca2b10a07e95ed6e60cc12ab1fbd2971014bab73cc747558d13567b9b719a75a92591a2868313f94290776f4985c
-
SSDEEP
12288:it4W3VT08zASfDopyhP7zHhHvtzeZUaBpgYkjt/CwsY0OyngzW:it4AxkSropGuCaBaL9+OynN
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource unpack001/Confirmation!!.exe
Files
-
NEAS.ad654aeceeb0af81e68181bb70bfe413527895eb4b23b378bb084129f9ae1a0c.rar.rar
-
Confirmation!!.exe.exe windows:4 windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 552KB - Virtual size: 551KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 93KB - Virtual size: 92KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ