Static task
static1
Behavioral task
behavioral1
Sample
2e5ed0d809f8541f4262b6c26ae9376b.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
2e5ed0d809f8541f4262b6c26ae9376b.exe
Resource
win10v2004-20231222-en
General
-
Target
2e5ed0d809f8541f4262b6c26ae9376b
-
Size
497KB
-
MD5
2e5ed0d809f8541f4262b6c26ae9376b
-
SHA1
0f807c6a54599b2df06999279368407c5495f085
-
SHA256
7b91e9a5887452607abe3626ef02f10c240270091c454b92028577662f76e88e
-
SHA512
8e7fbaff43faf1c35e138e65c4ab08e03196fe6861ba538bbcfbae3ca79a067bef0ce7b915e662850d230d4dd588f86c5339e8a17e2d3878c351b3200fc080ca
-
SSDEEP
6144:GcdOhTKdHIld5l5rxCf4QATR+NoCBC9YBCzt:h8ied5zNCf4QvNoCsWa
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 2e5ed0d809f8541f4262b6c26ae9376b
Files
-
2e5ed0d809f8541f4262b6c26ae9376b.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
.nsp0 Size: 300KB - Virtual size: 300KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.nsp1 Size: 80KB - Virtual size: 80KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 12KB - Virtual size: 12KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE