Static task
static1
Behavioral task
behavioral1
Sample
314d64796428123265a6af8910807f50.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
314d64796428123265a6af8910807f50.exe
Resource
win10v2004-20231215-en
General
-
Target
314d64796428123265a6af8910807f50
-
Size
201KB
-
MD5
314d64796428123265a6af8910807f50
-
SHA1
d80015574aa047e571dbd9e98859f81d247dd4ce
-
SHA256
508bdadcf387e3cd959ec8686d34e78b1a285a60a6e88c3e5ef7f980430c2229
-
SHA512
0a580d0a812077bc4a45eec8e7b9e53ac07cef9ca6a94145a531a7f1856f0700b1dfc2d6bb28a6fbd859f90e953d4074afa984a1f57f9066187a1ec4e8056ba3
-
SSDEEP
1536:n231kdDPwYZYtmPLf9e87WppEb1OPSjuqBJS:OkAmcIAWOj
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 314d64796428123265a6af8910807f50
Files
-
314d64796428123265a6af8910807f50.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Imports
mscoree
_CorExeMain
Sections
.text Size: 132KB - Virtual size: 131KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 68KB - Virtual size: 67KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ