Static task
static1
General
-
Target
TerrorInstaller.exe
-
Size
26.0MB
-
MD5
367ab87194239e0cae73a4fc9171412d
-
SHA1
e9b155a703382fd96591af517d58c89501ede0ce
-
SHA256
1e9b58d83487b2af9fde2799ec722724e54b82af6e75f3a9bc6a155aa06a4670
-
SHA512
4e2c445074f483ee6cce0c93205114596773eb538599270d1dbba0bfbc0d1a26c804ac6c41a40907b80d968e9a36716efa23ec00cf318163acb06d69c95ac09d
-
SSDEEP
393216:KVlMVr1GFs2Mh0KwSGVi1A/zidzUyGhTvT1TB8iK5s9lJcqEV:4C4wSYGVF/sGhTL1l8iwLqE
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource TerrorInstaller.exe
Files
-
TerrorInstaller.exe.exe windows:4 windows x64 arch:x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Sections
.text Size: 25.9MB - Virtual size: 25.9MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 68KB - Virtual size: 67KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ