Static task
static1
Behavioral task
behavioral1
Sample
HSBC_093843_92343.pdf.exe
Resource
win7-20231020-en
Behavioral task
behavioral2
Sample
HSBC_093843_92343.pdf.exe
Resource
win10v2004-20231127-en
General
-
Target
HSBC_093843_92343.pdf.exe
-
Size
765KB
-
MD5
e09099905a06bf6c0c26c3b5ceb2f8f1
-
SHA1
993fca0bde00e85ef9714a8f17b39c5c1aa86900
-
SHA256
9f4ff6a61fea6fc87d56dc8dc274522d38e34255ccdb39a6888686b920ec5ac0
-
SHA512
b4ee68c40eb97fb948f2c1c75fa6f21e828979d7ce80f90d21fa844e3c871e0a99dba2bbde4ea1c6efafedb4dde108f63cce5abb6331a65aa85fec34041002b7
-
SSDEEP
12288:+C5pJHIvppx3Wwmb8hGHCGNn8ZNq29jg3EkvSB0Uvzixd66kJif0yFD:1pJwgDHfRINX96EGSWizixlKI
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource HSBC_093843_92343.pdf.exe
Files
-
HSBC_093843_92343.pdf.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 665KB - Virtual size: 664KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 99KB - Virtual size: 98KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ