Static task
static1
Behavioral task
behavioral1
Sample
0628f35a16455d6f9733f045b4b95969.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
0628f35a16455d6f9733f045b4b95969.exe
Resource
win10v2004-20231215-en
General
-
Target
0628f35a16455d6f9733f045b4b95969
-
Size
46KB
-
MD5
0628f35a16455d6f9733f045b4b95969
-
SHA1
57f82b848d13a43ba69602aa00cc27b1ae5a8bee
-
SHA256
ff6f783781d3a6e735f4fafd05b567e25f96f4fa51b1772a6b622e29e6b03d8b
-
SHA512
0ec2c35ff1e27a3919206c069335c56d7ecfc99f50fb2e6b54c6a207cb24bc70f438485ed26d630ad7baa621f86d8e3dbae4b8a8c9e9150796868c13607c4faf
-
SSDEEP
768:rWETqLpD48wRpdyQv01QTA2K+RYylFqH0ylqVgHHHSV7b3mojcUJ3zg3GmhI84V:rWETq9BGdyz1MA59YaHyV7b3VUWsI8
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 0628f35a16455d6f9733f045b4b95969
Files
-
0628f35a16455d6f9733f045b4b95969.exe windows:4 windows x86 arch:x86
bd51a645a9c68bd03b2e51586e5cbdcb
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NO_SEH
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetProcAddress
LoadLibraryA
Sections
.text Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 512B - Virtual size: 112B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
_TEXT2 Size: 44KB - Virtual size: 44KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE