Static task
static1
Behavioral task
behavioral1
Sample
410d8c6dd25940e90878f9d96d6d9188.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
410d8c6dd25940e90878f9d96d6d9188.exe
Resource
win10v2004-20231222-en
General
-
Target
410d8c6dd25940e90878f9d96d6d9188
-
Size
451KB
-
MD5
410d8c6dd25940e90878f9d96d6d9188
-
SHA1
e7650bcc31ae3f42f3965feab4a586639229ec47
-
SHA256
da4372c5e138c3e441d15428bb1e00d44e70dfb530062ae4e40894fb9845ac36
-
SHA512
efd8abeeccb393185674d1fb9d22fbff0bb4af9174813f23a53eb4a5a24ff1a8a7befae3721612b09e9b0eb3712e66021a889b977f711e5d9a1026401fd2ba48
-
SSDEEP
6144:n0nq5IixQUfYf3Dbr7aeZiY71+4LPIzYTzIdZswEPXB99lL1JX8ueCsvEPZtq6eT:nCtiTY7bP1ZiTaYYTzTLXBdLPJjscx4
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 410d8c6dd25940e90878f9d96d6d9188
Files
-
410d8c6dd25940e90878f9d96d6d9188.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 448KB - Virtual size: 447KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.zlvsi Size: 512B - Virtual size: 8KB