Static task
static1
Behavioral task
behavioral1
Sample
48dd86811e1f1141a201935380a3f2319c4100098ac654465c755ded168beedf.exe
Resource
win7-20231130-en
Behavioral task
behavioral2
Sample
48dd86811e1f1141a201935380a3f2319c4100098ac654465c755ded168beedf.exe
Resource
win10v2004-20231127-en
General
-
Target
48dd86811e1f1141a201935380a3f2319c4100098ac654465c755ded168beedf
-
Size
676KB
-
MD5
abb70dd8e01b89abb8c249de5282023b
-
SHA1
2fcca1ff3c2c6f110f4db2cf9893025c2521821c
-
SHA256
48dd86811e1f1141a201935380a3f2319c4100098ac654465c755ded168beedf
-
SHA512
e1ad0dc5a87999a2e24ff085bce114ada642bc0c933a4e89cf1a64caabe1d5c447c59048c89f5aee0cba95c4c57453b8c7e0a91084c6d09e9ef9f406cda27e6d
-
SSDEEP
12288:eCj/JJIx5SiV5d4cSFdH7ZDNsed4ydZNGgwhm/biEuTaoDDryg:f/Js5SIdSFdbhNFNBwhksLDDWg
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 48dd86811e1f1141a201935380a3f2319c4100098ac654465c755ded168beedf
Files
-
48dd86811e1f1141a201935380a3f2319c4100098ac654465c755ded168beedf.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 664KB - Virtual size: 663KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 11KB - Virtual size: 10KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ