Static task
static1
Behavioral task
behavioral1
Sample
Alnuzaili.exe
Resource
win7-20231130-en
Behavioral task
behavioral2
Sample
Alnuzaili.exe
Resource
win10v2004-20231130-en
General
-
Target
Alnuzaili.exe
-
Size
703KB
-
MD5
e578a1f547aa0fe425455661c09c8191
-
SHA1
5351a3caa604e8c54c9cddda3886bc21e7785c37
-
SHA256
8cb2647b24754e94c09a29438e2f49a2d55f0b772f8f013f5b90dcbfe8f957d8
-
SHA512
350f9dfb4992ecbd88a6318fdd5fac3305c44abf5c2c18b4cac753e42abbf97a9fed8762cdeef11769c3d9855093656fa90fdb308523f86435592c9631df168e
-
SSDEEP
12288:gHl5nF8dVdqrlbD+aWGXWYkwDOMNQ2luSn0y89inwoa6Y6bxlN6lbHILlzkWV:wlYqhbD+aWfYJ5n0nsav61lNILQlzk8
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource Alnuzaili.exe
Files
-
Alnuzaili.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 694KB - Virtual size: 694KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 7KB - Virtual size: 7KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ