Static task
static1
Behavioral task
behavioral1
Sample
e7f46dc7145e87eb0674a7b2b7b980a886defb6e8ad7a2caff796a3787a01dff.exe
Resource
win7-20231020-en
Behavioral task
behavioral2
Sample
e7f46dc7145e87eb0674a7b2b7b980a886defb6e8ad7a2caff796a3787a01dff.exe
Resource
win10v2004-20231130-en
General
-
Target
e7f46dc7145e87eb0674a7b2b7b980a886defb6e8ad7a2caff796a3787a01dff
-
Size
422KB
-
MD5
a4b7d954a47d10725218d26512544394
-
SHA1
4d7a7b92c256927cb93d78896f278e8945ea0665
-
SHA256
e7f46dc7145e87eb0674a7b2b7b980a886defb6e8ad7a2caff796a3787a01dff
-
SHA512
ee7554af28b119016d04e1f3e6eae2296c9406e02835f6506bb255c4f606b3cde1ad655217a13d5d51796502047ec590179bb2a45db0433ffce437653a8ae977
-
SSDEEP
6144:Rxu7VAd87ZC/xmqXAtz9TqawD0vcOCbjcqmBuXUmiedMKhB2j9YDxTgCrC:Rxu7lZ4xmqg9TJtTCbjpmBR3MMluxTg
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource e7f46dc7145e87eb0674a7b2b7b980a886defb6e8ad7a2caff796a3787a01dff
Files
-
e7f46dc7145e87eb0674a7b2b7b980a886defb6e8ad7a2caff796a3787a01dff.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 404KB - Virtual size: 404KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 16KB - Virtual size: 16KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ