Static task
static1
Behavioral task
behavioral1
Sample
0126112322618366253761236701.exe
Resource
win7-20231023-en
Behavioral task
behavioral2
Sample
0126112322618366253761236701.exe
Resource
win10v2004-20231130-en
General
-
Target
0126112322618366253761236701.exe
-
Size
788KB
-
MD5
5fc03606153df43c6cafaed1b281a17e
-
SHA1
cb27e1954898a3da99e731f4bbf6f00c9fdf281e
-
SHA256
2b0b839d4f9f78fba2a72fe526f4f56a8e1ea4d1e0585bfce395ca2715985b83
-
SHA512
c0a0b6dd0b1cdc309ad28c213895dd8e8afb4fec7ac81fa268eb369f6ef7a3ab70807e8b3d10dd4b3b85d6cdcf626521b0c4fe5f328cb3acb22ecf72af1cf9be
-
SSDEEP
12288:ZxiMvsEqYE2uXgq5ZYJX4698KlpvsVYBhjiW3t/GUG8Kwm+HJK4ENz1s:ZcMjPKoo6lvOYBNiWd/s8KwbENe
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 0126112322618366253761236701.exe
Files
-
0126112322618366253761236701.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 621KB - Virtual size: 620KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 166KB - Virtual size: 165KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ