Static task
static1
Behavioral task
behavioral1
Sample
5216b887ab3cab9612766d9b2e039d512fbf9c655fb9176106d9e3f1352bc247.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
5216b887ab3cab9612766d9b2e039d512fbf9c655fb9176106d9e3f1352bc247.exe
Resource
win10v2004-20231222-en
General
-
Target
5216b887ab3cab9612766d9b2e039d512fbf9c655fb9176106d9e3f1352bc247
-
Size
3.2MB
-
MD5
c481dd999cde22934e1e8610550a645d
-
SHA1
83d09396d463de390eb136ba87fcc15da128be40
-
SHA256
5216b887ab3cab9612766d9b2e039d512fbf9c655fb9176106d9e3f1352bc247
-
SHA512
4657a4d58cfd4313bef8430279f368db81ce6f1477987ca64df91bff433cb58e57d8d86f39b7403a34722d525bf3329d229eddbfe7f04307b3b8d1aa529b9768
-
SSDEEP
49152:6U7Eigy13TW4jFCs2pfRdO8u60N1xcdd9gVIkdqfvEAkqcPI:m3Ts21i8WN1igVIf6O
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 5216b887ab3cab9612766d9b2e039d512fbf9c655fb9176106d9e3f1352bc247
Files
-
5216b887ab3cab9612766d9b2e039d512fbf9c655fb9176106d9e3f1352bc247.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
.Upack Size: 146KB - Virtual size: 148KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 26KB - Virtual size: 56KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.imports Size: 3KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE