Static task
static1
Behavioral task
behavioral1
Sample
6c6bd3ebfb6c7662f9406c7d29735046.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
6c6bd3ebfb6c7662f9406c7d29735046.exe
Resource
win10v2004-20231215-en
General
-
Target
6c6bd3ebfb6c7662f9406c7d29735046
-
Size
21KB
-
MD5
6c6bd3ebfb6c7662f9406c7d29735046
-
SHA1
1b6a6c6181719d582b77699b15d58636dee3ca1a
-
SHA256
4244093d6dc245299a8e8c887f79897776bb3ad01c1de34e1c21ba34d134976f
-
SHA512
4faf62bab8638561862607879dda40ebce0a88f1b746462ea0dff9033eeeb53cd5a4bec9d1d54a30769d6ff7044513a0b8372896a32860e981df89e1781a7a87
-
SSDEEP
384:8ELpbFy7Q0776eoLXTDQvDaTedVdtN9MaMmmkv7APeE/9uIraw3yC/zjGga/ljfZ:fek07767TDQvDqedtzMIUeE/9V+ajGgQ
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 6c6bd3ebfb6c7662f9406c7d29735046
Files
-
6c6bd3ebfb6c7662f9406c7d29735046.exe windows:4 windows x86 arch:x86
094e685359ef92fd7418934aeaae5633
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NO_SEH
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
WriteProcessMemory
advapi32
RegQueryValueExW
Sections
.text Size: 1024B - Virtual size: 870B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 19KB - Virtual size: 19KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ