Static task
static1
Behavioral task
behavioral1
Sample
04897f9c28dd45cf8d3c486c81386e41f5ef45a927c2b2848397e0e081759823.exe
Resource
win7-20231201-en
General
-
Target
04897f9c28dd45cf8d3c486c81386e41f5ef45a927c2b2848397e0e081759823
-
Size
663KB
-
MD5
f118a46b685db6fd9d354a7810e65a3c
-
SHA1
9f6cfe1ee06d986b5e42a12bd4352d2645e6e9e5
-
SHA256
04897f9c28dd45cf8d3c486c81386e41f5ef45a927c2b2848397e0e081759823
-
SHA512
8204b6af49f3e8b90d01fe25973c010e2e7d5dc3121534611b84c5f89277483349a94f97a8483b0766ba8b52142a097ae1b063471072f1e9c9ac3634a08eb8b7
-
SSDEEP
12288:vdW0+4WpAE7yw2aLUmiLDkFXSBPEvbktKMwpszOOesLJ2uV5rTWoe1OWrw+:OpAElSHkFiuszVLJ2uV5rTWoe7
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 04897f9c28dd45cf8d3c486c81386e41f5ef45a927c2b2848397e0e081759823
Files
-
04897f9c28dd45cf8d3c486c81386e41f5ef45a927c2b2848397e0e081759823.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 646KB - Virtual size: 646KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 15KB - Virtual size: 15KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ