Static task
static1
Behavioral task
behavioral1
Sample
6f85dc06c158e174ec78bc7fe8c789bc.exe
Resource
win7-20231215-en
General
-
Target
6f85dc06c158e174ec78bc7fe8c789bc
-
Size
183KB
-
MD5
6f85dc06c158e174ec78bc7fe8c789bc
-
SHA1
07b2b4f43258605bbc263fcf806babba3be26346
-
SHA256
e1887b0dd441ac3056eecf766d6e420fb39f5eec2372efe5b97cfac413e5572c
-
SHA512
e507e4161333e6835c83acb440cd7319e9f61ac029a18cef433bbaa31d1b133c51e3b216fe0d7d27da00f09d740946a7150c4e9bfef2058e59d8845c5334a229
-
SSDEEP
3072:q1P9Q2eleL3o13lgI4xW4SRGNC49qEYgVuc/fsSMAGmhnhNzlN/HeiXRC9C7Rw54:qF9QPlG41xx5EC49qEB/fz4ahNzL/zCd
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 6f85dc06c158e174ec78bc7fe8c789bc
Files
-
6f85dc06c158e174ec78bc7fe8c789bc.exe windows:4 windows x86 arch:x86
a5314c2314eff649133a0fbf437a8525
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
gdi32
GetTextMetricsA
GetDeviceCaps
DeleteObject
SelectObject
GetTextExtentPointA
CreateFontIndirectA
newdev
UpdateDriverForPlugAndPlayDevicesW
kernel32
GetCPInfoExW
LocalFree
GetLastError
LCMapStringW
SetStdHandle
LoadLibraryA
LeaveCriticalSection
InitializeCriticalSection
LocalAlloc
EnumResourceTypesA
EnterCriticalSection
GetLogicalDriveStringsA
DeleteCriticalSection
GetProcAddress
LCMapStringA
GetModuleHandleA
GetSystemInfo
GetStringTypeA
ole32
OleSave
CoTaskMemAlloc
StringFromGUID2
CoTaskMemFree
CoCreateInstance
CoTaskMemRealloc
Sections
.text Size: 105KB - Virtual size: 104KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.tls Size: 1024B - Virtual size: 1020B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 75KB - Virtual size: 74KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 1024B - Virtual size: 124KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ