Static task
static1
Behavioral task
behavioral1
Sample
PO771000.exe
Resource
win7-20231020-en
Behavioral task
behavioral2
Sample
PO771000.exe
Resource
win10v2004-20231127-en
General
-
Target
E07D79C46FB481AA3E8F118E3F0B059A993B655DF815BDFD4708495A45C2568B
-
Size
1.2MB
-
MD5
3ebc619b1635a392dfd4b845f7e9b4ca
-
SHA1
6eea96fabc5d075d5851475f36d186593f8e8877
-
SHA256
e07d79c46fb481aa3e8f118e3f0b059a993b655df815bdfd4708495a45c2568b
-
SHA512
24874d59e83b8d75bb1c3514c704eccd4531add888e3ea37e83b556fa2726db1af9ad726d8960b677a9859a44932c9e5bb05005a1838949b878fa80f3b5e9ae1
-
SSDEEP
12288:Pelc5Fqrvh3ukGR8FFkbuqqKRY+ROuUFkCiUJ+nkweoWy3Hr4l/rQyw8GzNKJ4ea:kqs+RtUFPJc7eoWy3L4llXG+4e67M8v
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource unpack001/PO771000.EXE
Files
-
E07D79C46FB481AA3E8F118E3F0B059A993B655DF815BDFD4708495A45C2568B.iso
-
PO771000.EXE.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 665KB - Virtual size: 664KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ