??4_Init_locks@std@@QAEAAV01@ABV01@@Z
Static task
static1
Behavioral task
behavioral1
Sample
eb702cf86086c9d7c3493432e9e184ac0744cdc768f89e1fb4f10df4a69f70ac.exe
Resource
win7-20231025-en
Behavioral task
behavioral2
Sample
eb702cf86086c9d7c3493432e9e184ac0744cdc768f89e1fb4f10df4a69f70ac.exe
Resource
win10v2004-20231020-en
General
-
Target
eb702cf86086c9d7c3493432e9e184ac0744cdc768f89e1fb4f10df4a69f70ac
-
Size
3.1MB
-
MD5
119b7c9d0b40b5fa8bcd195e1ce744d2
-
SHA1
1df524b7a31e546eb121e69e647c8d3e079de3ac
-
SHA256
eb702cf86086c9d7c3493432e9e184ac0744cdc768f89e1fb4f10df4a69f70ac
-
SHA512
c4c074c30a471d4d9164db4b24b50953c6bf1bd3f1745f27b13164601bb00dfe2b807060321aae2673e93b348d11a94e1f3908e08a027b89c08eb1c215d53451
-
SSDEEP
49152:kFKjf+t5FUSWXbzXbK8jfbZKEngXJic36b3kufiR3RawtGACydOxF8OdC:k0jfOn+fb174ic3iUufiWoOoOg
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource eb702cf86086c9d7c3493432e9e184ac0744cdc768f89e1fb4f10df4a69f70ac
Files
-
eb702cf86086c9d7c3493432e9e184ac0744cdc768f89e1fb4f10df4a69f70ac.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Exports
Exports
Sections
.text Size: 4KB - Virtual size: 1.7MB
IMAGE_SCN_MEM_READ
VProtect Size: 260KB - Virtual size: 260KB
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
VProtect Size: 2.1MB - Virtual size: 2.1MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
VProtect Size: 8KB - Virtual size: 8KB
IMAGE_SCN_MEM_READ
VProtect Size: 716KB - Virtual size: 716KB
IMAGE_SCN_MEM_READ
VProtect Size: 4KB - Virtual size: 4KB
IMAGE_SCN_MEM_READ