Static task
static1
Behavioral task
behavioral1
Sample
ca97a62dd58689169538195a343e2c216d537d107a66c8d8b6aa82d929224440.exe
Resource
win7-20231201-en
Behavioral task
behavioral2
Sample
ca97a62dd58689169538195a343e2c216d537d107a66c8d8b6aa82d929224440.exe
Resource
win10v2004-20231130-en
General
-
Target
ca97a62dd58689169538195a343e2c216d537d107a66c8d8b6aa82d929224440
-
Size
829KB
-
MD5
5d1c9a1d3cf698d5388abbe8eeeb6aff
-
SHA1
0da3a5217e7072627b6111195933531869efc6a5
-
SHA256
ca97a62dd58689169538195a343e2c216d537d107a66c8d8b6aa82d929224440
-
SHA512
2dadc4a503cea21a4c669e1006a1deb15223a67aa8bcc4017c36c2ce9713fd2f508066e8bd3ad748e3ea03511109f08ef4baee1b293e1152904de750bb52233f
-
SSDEEP
12288:uWVrltW8G34/uK45+po2WLfpjF+ZDMlwtMrj9pQkS5uy3x9IUONe:5o34/up+pJspMZwltVS1
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource ca97a62dd58689169538195a343e2c216d537d107a66c8d8b6aa82d929224440
Files
-
ca97a62dd58689169538195a343e2c216d537d107a66c8d8b6aa82d929224440.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 811KB - Virtual size: 810KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 17KB - Virtual size: 16KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ