Static task
static1
Behavioral task
behavioral1
Sample
66f9d333194115f04debc38cc2cb6fa31c443b19889b7ba438223ae1d8009e9e.exe
Resource
win7-20231129-en
General
-
Target
49f99fe8437871d1526e0874404ad440.bin
-
Size
563KB
-
MD5
68ce73e65a46542dce1f51cd7e9eb683
-
SHA1
79a491b17b96f2bd777da14e0f9db19fc1218879
-
SHA256
1ffb36a52cd03456b01862a1ccf6a050e0171ee418a0b799de62528043188107
-
SHA512
2da8c7b4b479b984450bf1fcbe8d4efe651411407b0442e5831f902bf30623fa41006547ad7c8fbea26fc83f81538121fc41f42ea8c08de98def0d3695fa0334
-
SSDEEP
12288:CBLpnFJgpItLhnyl1MfTiSn4d+HSqPjFWlz0UbikB1cGUiQRbSl9GH2:0LRTcILyXMedi2zriEcNx5q9q2
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource unpack001/66f9d333194115f04debc38cc2cb6fa31c443b19889b7ba438223ae1d8009e9e.exe
Files
-
49f99fe8437871d1526e0874404ad440.bin.zip
Password: infected
-
66f9d333194115f04debc38cc2cb6fa31c443b19889b7ba438223ae1d8009e9e.exe.exe windows:4 windows x86 arch:x86
Password: infected
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 636KB - Virtual size: 636KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ