Static task
static1
Behavioral task
behavioral1
Sample
201b3143e9e4ba28c3dacba060233db540cce934825d05f91165bc50a3e2c996exe.exe
Resource
win7-20231201-en
Behavioral task
behavioral2
Sample
201b3143e9e4ba28c3dacba060233db540cce934825d05f91165bc50a3e2c996exe.exe
Resource
win10v2004-20231130-en
General
-
Target
201b3143e9e4ba28c3dacba060233db540cce934825d05f91165bc50a3e2c996exe.exe
-
Size
635KB
-
MD5
acd04306f9838fb1b154c2a42e072ef5
-
SHA1
5fb94f6e77ecd9f3f3baa523f332bd5c75db73ac
-
SHA256
201b3143e9e4ba28c3dacba060233db540cce934825d05f91165bc50a3e2c996
-
SHA512
26eca6161dc3ae0ff08791c9f76bffc86a543bc1a9115e87417a4abad56762dabe8a7c6f80d694ac414fcd0257e47fc9eaac401aaaaafff0922fcec28dacdf93
-
SSDEEP
12288:+a45+po2d1pgIyS8+YI6fELRCQce6S5cJc4ZuNqFsU8dZE:+5+pJrISm3sLRCHFMcC3NksU8dS
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 201b3143e9e4ba28c3dacba060233db540cce934825d05f91165bc50a3e2c996exe.exe
Files
-
201b3143e9e4ba28c3dacba060233db540cce934825d05f91165bc50a3e2c996exe.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 630KB - Virtual size: 630KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ