Static task
static1
Behavioral task
behavioral1
Sample
005b788e0cdbfc3b2ddabe2a637dd7c8.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
005b788e0cdbfc3b2ddabe2a637dd7c8.exe
Resource
win10v2004-20231222-en
General
-
Target
005b788e0cdbfc3b2ddabe2a637dd7c8
-
Size
107KB
-
MD5
005b788e0cdbfc3b2ddabe2a637dd7c8
-
SHA1
0cc19acb3482435d6c5c0f9f1e323719ebcd5c86
-
SHA256
f589cfe3c07dc25343ec27d4ae6fbe85a95adb1757533425f9ccecdb222d0190
-
SHA512
f8e5ccaba4ed9596071bc6ae274256de40d1b2b5277aef9b37dc2ae19b4eac16beb9bc352ff877dbf7538f48b888862239571ec9ac76ac8b38bad28e2c5f3976
-
SSDEEP
3072:adKxB1qGTjkmlOPezCPSF/RDtadjg3nJ5:0Q4ECPApZadjCn7
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 005b788e0cdbfc3b2ddabe2a637dd7c8
Files
-
005b788e0cdbfc3b2ddabe2a637dd7c8.exe windows:4 windows x86 arch:x86
452e807d179221a69a9f39536182a2fb
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
urlmon
URLOpenStreamA
IsLoggingEnabledA
CoInstall
GetClassFileOrMime
AsyncInstallDistributionUnit
IsValidURL
gdi32
SetICMMode
SetRelAbs
ResetDCW
StretchBlt
SetDIBColorTable
UpdateColors
SaveDC
TextOutW
shell32
StrRChrIA
SHFormatDrive
SHAppBarMessage
Sections
.text Size: 24KB - Virtual size: 35KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 5KB - Virtual size: 15KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 68KB - Virtual size: 151KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 8KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE