Static task
static1
Behavioral task
behavioral1
Sample
SOA OCT-NOV 2023.exe
Resource
win7-20231023-en
Behavioral task
behavioral2
Sample
SOA OCT-NOV 2023.exe
Resource
win10v2004-20231127-en
General
-
Target
SOA OCT-NOV 2023.zip
-
Size
626KB
-
MD5
5b6b7be15bda1f17de94992fa7d1d226
-
SHA1
8d6576e8945a3c635376ef1ec1ed4edc7a02a089
-
SHA256
b65fa79999540d67d3d3265a2d5081adf2a2119ebefa258dd4c3bfedaa203f03
-
SHA512
a2205c5c18c2923535f66d4005e137a17ae25696c11b1bdeaba74791a7f6dd76189f0264d59222beda069b0efb37a9e1f0540a5813ee691404049959a11c3267
-
SSDEEP
12288:SHhSevzMMXKP6xmYG2yO92n5NwAaxuknP2/3LDyxV7S8qoidn3mh6GvO5+fN:SHhSIwM6P6kYPyO92nInA0QoJYGgaN
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource unpack001/SOA OCT-NOV 2023.exe
Files
-
SOA OCT-NOV 2023.zip.zip
-
SOA OCT-NOV 2023.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 666KB - Virtual size: 665KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 11KB - Virtual size: 10KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ