Static task
static1
Behavioral task
behavioral1
Sample
21d9f9e07f43ea8b548b9edb41d031a9.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
21d9f9e07f43ea8b548b9edb41d031a9.exe
Resource
win10v2004-20231215-en
General
-
Target
21d9f9e07f43ea8b548b9edb41d031a9
-
Size
889KB
-
MD5
21d9f9e07f43ea8b548b9edb41d031a9
-
SHA1
71f147756e1cd01dd5747a79e9eb10e2c3b2ef94
-
SHA256
84583c4e352c1e2f621a080909cb7a0641d65cacdbdc5e6544e21d20e80ccb8d
-
SHA512
af7f859c0c9a29ee2c43aa9c8cb5244253c30a33e5a0059cef82f2d31f33d2b287d9ad6901e3994c12780e09ae7c55ad8be7196d90e79dd089b88c57ff3947b9
-
SSDEEP
12288:UZWtI6Rkbu9O9u4OVu9O9u4OVu9O9uk22:Uuha3t
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 21d9f9e07f43ea8b548b9edb41d031a9
Files
-
21d9f9e07f43ea8b548b9edb41d031a9.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 144KB - Virtual size: 143KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 64KB - Virtual size: 63KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ