Static task
static1
Behavioral task
behavioral1
Sample
bRIW.exe
Resource
win7-20231023-en
General
-
Target
bRIW.exe
-
Size
26KB
-
MD5
92c90dd577d1ea072db9bbc3f41c5221
-
SHA1
fc4ea90f77a8779082eeaf8e9fce09a48750e5c5
-
SHA256
22fe77f4ddabb789703dcd9d8cbcc200f7ce10b64b3b23813cd05f2b5b8f996c
-
SHA512
fd7ed0d4c672013a4578c6c0714380dedb611b954d9dd46ebae4e78127e33342fd38f7e7f79896390d6e0b58173c0c18dde57d6f6caf4912111d18be748d1e50
-
SSDEEP
384:/Ld6GredJz2fq9wGefHzCYe/8Y2OzRLTm3yilqr6BbPtVvGK:zd4Jz2y9qT5e/8swVvGK
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource bRIW.exe
Files
-
bRIW.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 24KB - Virtual size: 23KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ