Static task
static1
Behavioral task
behavioral1
Sample
4c20b710bb6abbe2fc08707566ee220c.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
4c20b710bb6abbe2fc08707566ee220c.exe
Resource
win10v2004-20231222-en
General
-
Target
4c20b710bb6abbe2fc08707566ee220c
-
Size
76KB
-
MD5
4c20b710bb6abbe2fc08707566ee220c
-
SHA1
095b5b8e0949248f9bd1e098a992d36c5219d261
-
SHA256
8b343e7afb93cd5819d4bf50ea0fdaada9fad1c41cb155959d9db2694b914e27
-
SHA512
0b20fbe81377f07892a84faf893f0a17d1f6c764da4529ed9a21b226d2408b0da2736c900992f3fe675aee5e5e0d16bcc3f67e4bf3e12df2872c5096f3814ea7
-
SSDEEP
1536:LpuRxOvowsFLKSjnhd/Ge41LJprJVBQbWQBUA1AVLr8AFDEFXn:Lc6vo1EMNGeC3JD0/WvEFX
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 4c20b710bb6abbe2fc08707566ee220c
Files
-
4c20b710bb6abbe2fc08707566ee220c.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.packed Size: - Virtual size: 140KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.RLPack Size: 46KB - Virtual size: 48KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
60ibj6v0 Size: 18KB - Virtual size: 20KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
txaonu3. Size: 10KB - Virtual size: 32KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE