Static task
static1
Behavioral task
behavioral1
Sample
05b04df2d14095dfbf3d6d5ab7afb8bf.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
05b04df2d14095dfbf3d6d5ab7afb8bf.exe
Resource
win10v2004-20231215-en
General
-
Target
05b04df2d14095dfbf3d6d5ab7afb8bf
-
Size
20KB
-
MD5
05b04df2d14095dfbf3d6d5ab7afb8bf
-
SHA1
7a9a04c300dfe2db8a5f5fc3f1c58770e8bdf2bc
-
SHA256
af7470a358197aa1353763318ea6f16a707bdc40c47b29e1bd36dcd465952f1b
-
SHA512
e0fc5bddce3f57cdb70b16449a5e02d498b07dace65cf33a4ddf8cfd5d82d950f6ef5323450e1d838f51a95198818eedbfbce8f497ea7f749d4b85e0a9feb2ab
-
SSDEEP
384:Yffwf3m5YIYZ2UefRTjRVWtvDn4EteTveAMbID7TT3/Jt6:cwf3maPZ9MjitL4EteK7u7TTe
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 05b04df2d14095dfbf3d6d5ab7afb8bf
Files
-
05b04df2d14095dfbf3d6d5ab7afb8bf.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: - Virtual size: 9KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: - Virtual size: 243KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.DsNiu Size: 19KB - Virtual size: 20KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE