Static task
static1
Behavioral task
behavioral1
Sample
F41F857FFC88B7BB91623B6C6282B7AF.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
F41F857FFC88B7BB91623B6C6282B7AF.exe
Resource
win10v2004-20231215-en
General
-
Target
58c3f27ab07e9fd2310c3d1a58640623
-
Size
3.8MB
-
MD5
58c3f27ab07e9fd2310c3d1a58640623
-
SHA1
a99721a39727301615bdd377e50f7c1436de1fe4
-
SHA256
17d2692c8b3b31f86def52d32500812de4322bccf93d4487d8d7f6aa18789fe8
-
SHA512
0e60ee4924798079a003c6bfe28cfd020e169034d37af6187d9c49e44bfc8c64126267886ad5add6a06c0e96da9ae35f08b38e9f176d10491892f7a75ec17b89
-
SSDEEP
98304:ZEMI6+pADq32aXl+/zwdqTSRNvcln59Bt+UBlF:ZEu+pAD82a1Sz0YIvclDXF
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource unpack001/F41F857FFC88B7BB91623B6C6282B7AF.EXE
Files
-
58c3f27ab07e9fd2310c3d1a58640623.rar
-
F41F857FFC88B7BB91623B6C6282B7AF.EXE.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 73KB - Virtual size: 76KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 2KB - Virtual size: 28KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 24KB - Virtual size: 23KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ