Static task
static1
Behavioral task
behavioral1
Sample
5e577cab48fed39aa405175b0d92bd21.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
5e577cab48fed39aa405175b0d92bd21.exe
Resource
win10v2004-20231215-en
General
-
Target
5e577cab48fed39aa405175b0d92bd21
-
Size
512KB
-
MD5
5e577cab48fed39aa405175b0d92bd21
-
SHA1
67fa309db1ee18c672e276f50cca58d96b059131
-
SHA256
4f453da8d45b78625e007b09857f6521e3203949edffe7b96d345e2e525a838f
-
SHA512
195f9bc7e4795fea69b62ebb9f9f627d1453a68e9701fe03ad47fe45b8095c0d9086f1578993dd0756cbf74b04669f68ef3ba448e54a8a5dfe0c12ea2096d662
-
SSDEEP
12288:C5P+Tf3efA9QdWWgnSKOZqSJcmeEzDfD1WhVsRp:ws79Qds/P1EzDfkhu
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 5e577cab48fed39aa405175b0d92bd21
Files
-
5e577cab48fed39aa405175b0d92bd21.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 803KB - Virtual size: 804KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 512B - Virtual size: 162B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE