Static task
static1
Behavioral task
behavioral1
Sample
deca38f08d76cca6d3a2318fb50d5fd28f3547289f3b2c04b2ead422c382dff1.exe
Resource
win7-20231023-en
Behavioral task
behavioral2
Sample
deca38f08d76cca6d3a2318fb50d5fd28f3547289f3b2c04b2ead422c382dff1.exe
Resource
win10v2004-20231023-en
General
-
Target
deca38f08d76cca6d3a2318fb50d5fd28f3547289f3b2c04b2ead422c382dff1
-
Size
4.4MB
-
MD5
2c742b167e26b1db0d14efcb0f4ed041
-
SHA1
a31e4a7c03a778b2f48fca00d1693c2b56460df3
-
SHA256
deca38f08d76cca6d3a2318fb50d5fd28f3547289f3b2c04b2ead422c382dff1
-
SHA512
450459f5ed9e1a8c0f4c6633b58c3bd30e1e509d960dcbfa7fe7dc6f0f1e4591af7eb63b68abdfc8e66150a8ac02b6b35cca41c8264fae14f3e15c4ec3639631
-
SSDEEP
98304:pIf7WYHDUxVrlL3FbV6rcKmgVJ6BpCaRGyV9sYoUhylpYm:dVbbV6NmgVJ4pCaR/rIi
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource deca38f08d76cca6d3a2318fb50d5fd28f3547289f3b2c04b2ead422c382dff1
Files
-
deca38f08d76cca6d3a2318fb50d5fd28f3547289f3b2c04b2ead422c382dff1.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 4KB - Virtual size: 1.7MB
IMAGE_SCN_MEM_READ
VProtect Size: 548KB - Virtual size: 548KB
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
VProtect Size: 3.8MB - Virtual size: 4.6MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
VProtect Size: 4KB - Virtual size: 4KB
IMAGE_SCN_MEM_READ
VProtect Size: 48KB - Virtual size: 48KB
IMAGE_SCN_MEM_READ