Static task
static1
Behavioral task
behavioral1
Sample
cefa355ee8494ad3ecdec640887d8d47.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
cefa355ee8494ad3ecdec640887d8d47.exe
Resource
win10v2004-20231215-en
General
-
Target
cefa355ee8494ad3ecdec640887d8d47
-
Size
184KB
-
MD5
cefa355ee8494ad3ecdec640887d8d47
-
SHA1
eb91eeaf90b028266efa0f7fdf675c112fd87b23
-
SHA256
f21ba48c6f3b48a88304b1ffe8693b0331df6f824f15c5bb048d6339b268c92e
-
SHA512
88dfedadc0522823e2e7f45cc85576898983fb283a37f73395c84627690d6405056cda8a688385eb7fc47bb5f004450a9290ad7c9c1fc2592db54894c4dea7d4
-
SSDEEP
3072:ohijonmOV+FmfLjOMF3Vl8SYqOlWtRil5RSxceP6aylY3pF9:ohCoxOmf+M5Vl8k+xCylY3pF
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource cefa355ee8494ad3ecdec640887d8d47
Files
-
cefa355ee8494ad3ecdec640887d8d47.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 172KB - Virtual size: 168KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ