Static task
static1
Behavioral task
behavioral1
Sample
e11b5abd402146746adbcc300f200a70cae1a120d041ce1d5499c9e234d5e643.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
e11b5abd402146746adbcc300f200a70cae1a120d041ce1d5499c9e234d5e643.exe
Resource
win10v2004-20231215-en
General
-
Target
e11b5abd402146746adbcc300f200a70cae1a120d041ce1d5499c9e234d5e643
-
Size
1.2MB
-
MD5
af617c4ac952c7530366da9aa7e292e0
-
SHA1
e8cd0f781881ce110fd8db8e3096d89e84146acd
-
SHA256
e11b5abd402146746adbcc300f200a70cae1a120d041ce1d5499c9e234d5e643
-
SHA512
d706ea5b2b4351b6de385efcca6ec3dbd229f5b9cd28680e3095deac8635337d25606809e1e4b84b543000baa6d8e7b464e52e6163d38a72a7ce2db4efe1e64d
-
SSDEEP
12288:x03V+47jDuNj3ZQaXFXcDkKkuT/nMmv5aW3aRasWDqYaWtC2anPaGa/:Cm3ZQAXskKk8nvRlWzEbAe
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource e11b5abd402146746adbcc300f200a70cae1a120d041ce1d5499c9e234d5e643
Files
-
e11b5abd402146746adbcc300f200a70cae1a120d041ce1d5499c9e234d5e643.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 254KB - Virtual size: 254KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 62KB - Virtual size: 61KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ