Static task
static1
Behavioral task
behavioral1
Sample
970ef5a5e3e0f87298bed09f61b53bdf3b1e58fe3ae23e8eda69f720d551c252.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
970ef5a5e3e0f87298bed09f61b53bdf3b1e58fe3ae23e8eda69f720d551c252.exe
Resource
win10v2004-20231215-en
General
-
Target
970ef5a5e3e0f87298bed09f61b53bdf3b1e58fe3ae23e8eda69f720d551c252
-
Size
168KB
-
MD5
1e88848a0c929c0a4b046522958e14b9
-
SHA1
5c410e1dd99b7bb5071d5f72392ca7afd1f3899f
-
SHA256
970ef5a5e3e0f87298bed09f61b53bdf3b1e58fe3ae23e8eda69f720d551c252
-
SHA512
7a9df648fcd93620d9ffd59a4c58989c95c5af8aa3cde3a90f428a6740adaa6af389e8004e38b33b44db4fb83590260b063b1bcb7d15a2c253798ec51d0294fe
-
SSDEEP
3072:kftffjmN02aACAMfVxHsjqUwkMejsRkCdvR0FlgHIRXmUa9Il6:8VfjmN02dMQRcR0FZXpw
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 970ef5a5e3e0f87298bed09f61b53bdf3b1e58fe3ae23e8eda69f720d551c252
Files
-
970ef5a5e3e0f87298bed09f61b53bdf3b1e58fe3ae23e8eda69f720d551c252.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.Upack Size: - Virtual size: 148KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 25KB - Virtual size: 56KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE