Static task
static1
Behavioral task
behavioral1
Sample
93da5b68246f2c37789b4fe137f570a7eaf939810bedac23fc6ce070a19672e5.exe
Resource
win7-20231025-en
Behavioral task
behavioral2
Sample
93da5b68246f2c37789b4fe137f570a7eaf939810bedac23fc6ce070a19672e5.exe
Resource
win10v2004-20231025-en
General
-
Target
93da5b68246f2c37789b4fe137f570a7eaf939810bedac23fc6ce070a19672e5.zip
-
Size
506KB
-
MD5
617175ca8af35607ca40411d03c3215e
-
SHA1
e778bf496b969bac144847150107f1d47de5cc49
-
SHA256
4e31afeebcbe640b0aae41fcd0e63c0853530906117a6aca7d637b04d8c33555
-
SHA512
5188a056220dd057914337141e8d4e827c0b33cfddbbd02282924cf1191de8469a8af52c70b7c24ffe0c65c89127e0a7786f5ee2040105e0dea662df5d50d55c
-
SSDEEP
12288:ICFe4wPxc2lBzRINxBh+hQzVlcFl6ssv+jW/7ABBYuj9plpMZR:fw4GxjynW6VlcFl6fGjW/7ABB/xH6R
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource unpack001/93da5b68246f2c37789b4fe137f570a7eaf939810bedac23fc6ce070a19672e5.exe
Files
-
93da5b68246f2c37789b4fe137f570a7eaf939810bedac23fc6ce070a19672e5.zip.zip
Password: infected
-
93da5b68246f2c37789b4fe137f570a7eaf939810bedac23fc6ce070a19672e5.exe.exe windows:4 windows x86 arch:x86
Password: infected
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 586KB - Virtual size: 585KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 6KB - Virtual size: 6KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ