Static task
static1
Behavioral task
behavioral1
Sample
1956217074dfd9225337d2e451938128.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
1956217074dfd9225337d2e451938128.exe
Resource
win10v2004-20231215-en
General
-
Target
1956217074dfd9225337d2e451938128
-
Size
57KB
-
MD5
1956217074dfd9225337d2e451938128
-
SHA1
5ccd21b48ae66f4e85bf3427164fc0b93181f29e
-
SHA256
e41aefbc8060aef054cb1981d260e4db2da1a33dfba0d73d225ad7eab08cf455
-
SHA512
e33c96f518d0e4feb61b02c25a7d5db6bb1d0437c4bbe79155d5c36822a5af87d9c9f66d5986d8efeb1d60b7bfcf7bed18bd640c0046707380d40199e3da0836
-
SSDEEP
768:9u88JmsOFMi3tYncdlDkQQa17xNnzvbEZ4LWv/RWjebG5Kg7BTh8j:9uXmXWc/4fatDzMfHsp5K+h
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 1956217074dfd9225337d2e451938128
Files
-
1956217074dfd9225337d2e451938128.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
CODE Size: 49KB - Virtual size: 49KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
DATA Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
BSS Size: - Virtual size: 2KB
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.tls Size: - Virtual size: 8B
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 512B - Virtual size: 24B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 512B - Virtual size: 512B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ