Static task
static1
Behavioral task
behavioral1
Sample
f9538e23ff2903328c5ae289a7de3cb0.exe
Resource
win7-20231025-en
Behavioral task
behavioral2
Sample
f9538e23ff2903328c5ae289a7de3cb0.exe
Resource
win10v2004-20231023-en
General
-
Target
f9538e23ff2903328c5ae289a7de3cb0.exe
-
Size
360KB
-
MD5
f9538e23ff2903328c5ae289a7de3cb0
-
SHA1
5bdd7877d651d8090cf25ebca597cac51a4de005
-
SHA256
b4cc1a13b8d0cbd941db080244e6d385fd0348225684a0a2f1f7d399c9c5208c
-
SHA512
06529e5cbe1afcffc890e1e5d9528bebd0b617b4778e6db0eba316fa98baff5d4175bb2915f4aba8a35d3f5b76054e8fed2b3b8a41aaec8291cfb6973a7efe66
-
SSDEEP
6144:Q+Kg9UegsrwW5Es3Bdnp6ClAfz895jQUrqUegs:Q+Kg9VgslxdpRlAL89CUWVgs
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource f9538e23ff2903328c5ae289a7de3cb0.exe
Files
-
f9538e23ff2903328c5ae289a7de3cb0.exe.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.textbss Size: - Virtual size: 124KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.text Size: 3KB - Virtual size: 8KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 178KB - Virtual size: 180KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.idata Size: 308B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 38KB - Virtual size: 40KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ