Static task
static1
Behavioral task
behavioral1
Sample
391d804dad52342922ba576be00a7a64.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
391d804dad52342922ba576be00a7a64.exe
Resource
win10v2004-20231215-en
General
-
Target
391d804dad52342922ba576be00a7a64
-
Size
33KB
-
MD5
391d804dad52342922ba576be00a7a64
-
SHA1
2e3abb507bc1cd4d39291b3e08ccca8f080cf60b
-
SHA256
e82d654582b6ae3a0d8acc364c8a368d012942c2c31fb32a9837a3e3d7a51abf
-
SHA512
8ee8b447ad2be9ae7025de2b32c886b18c8a1f7ba600c5513dafcbd1a2bd9d421e6e4ae6819ad9cd5434aeadca82de996af6fdbdc99f26d459921aa0ab65cc84
-
SSDEEP
768:YeIjLrlj9+fEwFAKPH5XXwmpT1kPPNxn+EdYmSsmqAj2+:Ye8FjZw+KhV12NtO5smRD
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 391d804dad52342922ba576be00a7a64
Files
-
391d804dad52342922ba576be00a7a64.exe windows:4 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NO_ISOLATION
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
CODE Size: 167KB - Virtual size: 166KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
DATA Size: 1KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
BSS Size: - Virtual size: 3KB
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 26KB - Virtual size: 25KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 11KB - Virtual size: 10KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ