Static task
static1
Behavioral task
behavioral1
Sample
dc834af94d4cba3391bcd4b6537b8b9f.exe
Resource
win7-20231215-en
General
-
Target
dc834af94d4cba3391bcd4b6537b8b9f
-
Size
939KB
-
MD5
dc834af94d4cba3391bcd4b6537b8b9f
-
SHA1
7b238266576ba6d7340f340f168d3695018e9658
-
SHA256
70a99ba0d7f5480712d328df4fbee1b292785672ca182eb470cc24ee2aefa2e2
-
SHA512
103eb5eaf0af283ccd0e8167dc7468386f3ec032d7420b6a63630ce0259b1282ddf2408a0aa744af7e39d3e05e050b47a8514c5504e0485dab3e431943b6ee27
-
SSDEEP
6144:D1f6vg7Sq49hmWdQ++WD+z91pC+MmA506FF1ZYN7EEpLdJF+UYELYGcJg65H0d9O:D1fzSzkq0z91p1MmAjPANbrMUF8Gxf
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource dc834af94d4cba3391bcd4b6537b8b9f
Files
-
dc834af94d4cba3391bcd4b6537b8b9f.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.code Size: 350KB - Virtual size: 349KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 82KB - Virtual size: 81KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 213KB - Virtual size: 213KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Size: 292KB - Virtual size: 292KB
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE