Static task
static1
Behavioral task
behavioral1
Sample
fa019f211e8ca61d47f9b2f6db39b382.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
fa019f211e8ca61d47f9b2f6db39b382.exe
Resource
win10v2004-20231222-en
General
-
Target
fa019f211e8ca61d47f9b2f6db39b382
-
Size
883KB
-
MD5
fa019f211e8ca61d47f9b2f6db39b382
-
SHA1
7ea1f87231617ed7d9c22e630918e568cc8ef213
-
SHA256
41692d78f86f728c4c40874f1b540e161482ffd801c515a32f26b5ef2ca72bdb
-
SHA512
2f9153cbeeaa5d63eaa1d443acebe743d4b85ffe387d4dcadf84aff550b31d4e8c8943c5e9a5e9f594d0dc119d2926d17b7f82cb936fa9bd9209fbaa7eaa4196
-
SSDEEP
3072:65Y0F6j7moLkexv7ez2MNtyuZCI5hztHAqbVAfEIrmwvnuxJ9XPfO8E0anAznuKM:P0F6j7moLkeN7A5W4wT2U2
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource fa019f211e8ca61d47f9b2f6db39b382
Files
-
fa019f211e8ca61d47f9b2f6db39b382.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 879KB - Virtual size: 878KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 1024B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ