Static task
static1
Behavioral task
behavioral1
Sample
6d1598dee12b19ca5c9f81ff72b984dc.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
6d1598dee12b19ca5c9f81ff72b984dc.exe
Resource
win10v2004-20231215-en
General
-
Target
6d1598dee12b19ca5c9f81ff72b984dc
-
Size
119KB
-
MD5
6d1598dee12b19ca5c9f81ff72b984dc
-
SHA1
00d85a4513da48ed991f686bad8c854f3d855865
-
SHA256
cff7eb180b34a693d7a2c8436d32f92d726729141d436989a27f08de9ab3c7c3
-
SHA512
c202c5b810c48cac1ab2bf388f3b6a161479751cb4cffa7b7fb4cad07d343a84096c4a46d0b47bce4c5fdbb06b30d3e79b0cba656909fb5d6b724cffae2673ab
-
SSDEEP
3072:Dk9QNjrsjf2o7VUsWrrqSMyVbfbWHZ2Sd3fPRkawzGsn:z3iuWUsWrO4bfbHSBBkawa
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 6d1598dee12b19ca5c9f81ff72b984dc
Files
-
6d1598dee12b19ca5c9f81ff72b984dc.exe windows:4 windows x86 arch:x86
3210f3334bca00ee4f43fdcb5203a8f3
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Imports
kernel32
CloseHandle
CreateFileA
CreateFileMappingA
FlushViewOfFile
GetFileSize
GetModuleHandleA
GetStartupInfoA
MapViewOfFile
SetEndOfFile
SetFilePointer
UnmapViewOfFile
lstrcatA
lstrcpyA
lstrlenA
user32
DefDlgProcA
DeleteMenu
DestroyIcon
DialogBoxParamA
EndDialog
GetActiveWindow
GetDlgItem
GetSystemMenu
LoadCursorA
LoadIconA
MessageBoxA
PostMessageA
RegisterClassA
SendMessageA
SetDlgItemTextA
wsprintfA
Sections
.text Size: 2KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 112KB - Virtual size: 120KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ