Static task
static1
Behavioral task
behavioral1
Sample
f3d968487d44707266e10565148ad028.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
f3d968487d44707266e10565148ad028.exe
Resource
win10v2004-20231215-en
General
-
Target
f3d968487d44707266e10565148ad028
-
Size
2.1MB
-
MD5
f3d968487d44707266e10565148ad028
-
SHA1
c0ae42d7fcb9c5930cd8f6371061daa9e9ea83ea
-
SHA256
4fb089b4148a29264729e6fc867a6d95fe115726d0e4a4c6a6157d4e36f6ac10
-
SHA512
bdc0ce94c6a9d769dbac25b8fed42212cdf5fdb0bf92a8703eeebd3aec44631b5d34ff8c4025963f3d1df2a97e23be627d52a5edc6db6e847fc83a327d81923f
-
SSDEEP
49152:0j9NBioIgjdsk9WnOq8xmN3Aek03noj45wlDT:g9NBi3gjOk9WOqeUJF3noxD
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource f3d968487d44707266e10565148ad028
Files
-
f3d968487d44707266e10565148ad028.exe windows:4 windows x64 arch:x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 60KB - Virtual size: 57KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 12KB - Virtual size: 11KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ