Static task
static1
Behavioral task
behavioral1
Sample
00635a14a33097f9b4bc658ff201f7ec.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
00635a14a33097f9b4bc658ff201f7ec.exe
Resource
win10v2004-20231215-en
General
-
Target
00635a14a33097f9b4bc658ff201f7ec
-
Size
234KB
-
MD5
00635a14a33097f9b4bc658ff201f7ec
-
SHA1
65ad38a95a3d23d7251ade8c326c08686def52e5
-
SHA256
c023453ad8182488275bfd6df78c1b1d9cdad21521acc027a2196672e6849c92
-
SHA512
ffbb39f4e3eec6bb75c8b4db517e48a0777f791aa2fdfc8262be2f42e086721195a51ee0b3cc730e580b76982c42f175f341dba08fbbbb97333d0975dfcd0f23
-
SSDEEP
6144:hgL79Va8Xcf8qCg/xPhZ3wstXcf8qCg/xPhZ3wsd:Gm8kdH3wstkdH3wsd
Malware Config
Signatures
Files
-
00635a14a33097f9b4bc658ff201f7ec.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Code Sign
61:a2:9c:20:36:00:6f:bd:47:3a:f2:7b:84:d0:de:3fCertificate
IssuerCN=waleed-PC\\waleedNot Before28/02/2018, 04:19Not After28/02/2019, 10:19SubjectCN=waleed-PC\\waleed84:6b:93:89:d5:21:ca:e5:d8:2d:71:da:45:97:df:18:82:4a:da:fb:57:b3:86:98:6d:88:c8:af:11:b0:f0:aaSigner
Actual PE Digest84:6b:93:89:d5:21:ca:e5:d8:2d:71:da:45:97:df:18:82:4a:da:fb:57:b3:86:98:6d:88:c8:af:11:b0:f0:aaDigest Algorithmsha256PE Digest MatchestrueHeaders
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 231KB - Virtual size: 231KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 920B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ