Static task
static1
Behavioral task
behavioral1
Sample
AFX_909388388382772883.jpg.exe
Resource
win7-20231023-en
Behavioral task
behavioral2
Sample
AFX_909388388382772883.jpg.exe
Resource
win10v2004-20231127-en
General
-
Target
AFX_909388388382772883.jpg.bat
-
Size
621KB
-
MD5
209267b5decf170fdc25565e0d86a5d2
-
SHA1
a96b5e85c76e518534c59a849ec45e129c1597a9
-
SHA256
0a109b2fcbb4ceae58549963c3c7ba7444763b9c9536323e95d90116cd78f809
-
SHA512
2e1fc8466a4c4a773845a4c2d378d2e2fc427c56f820eef6d9f0c1fc6d216c6fb17c6ed1c278798c2772db87bb3382bef6a74337eb538519bf15d9b70cd34890
-
SSDEEP
12288:tknueH5qxiaH9god9j5199wXRusYfB6CxNK6PRW:6Vqxi8yqB510R4Zw
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource AFX_909388388382772883.jpg.bat
Files
-
AFX_909388388382772883.jpg.bat.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 618KB - Virtual size: 617KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ