Static task
static1
Behavioral task
behavioral1
Sample
3494e301205a783e629a5ef956406c84.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
3494e301205a783e629a5ef956406c84.exe
Resource
win10v2004-20231215-en
General
-
Target
3494e301205a783e629a5ef956406c84
-
Size
224KB
-
MD5
3494e301205a783e629a5ef956406c84
-
SHA1
07d255cba79e22c89d9cd7914185c4747211bd15
-
SHA256
4c4909ad702b32683ba4ae774c261d21cfe02b582a1c6aa04fc76669266f6a27
-
SHA512
e4e98e543cdf0a153029d84c16c477bfd29ea76d89fbdbd3979cf35246fddca2366615eaaae05e0b02f1f7a70f17dfb4f54c90c9533e808aef26b4ed85c74a56
-
SSDEEP
3072:EH/0+QsR/Xm16EpM3Gs9nnVbJ8HkYFiH6o9:V+Quo6vWs9nVbJQkYF2
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 3494e301205a783e629a5ef956406c84
Files
-
3494e301205a783e629a5ef956406c84.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Imports
mscoree
_CorExeMain
Sections
.text Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 219KB - Virtual size: 219KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ