Static task
static1
Behavioral task
behavioral1
Sample
00d890597737c64604fb99cac1123f82.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
00d890597737c64604fb99cac1123f82.exe
Resource
win10v2004-20231215-en
General
-
Target
00d890597737c64604fb99cac1123f82
-
Size
355KB
-
MD5
00d890597737c64604fb99cac1123f82
-
SHA1
b8feac01b11cd9d1acfb763dd98e13a92bb2f62c
-
SHA256
08ca2a32d6a27de1f07a164ed5211b0925d6c714202d6904b14e5762cb1c1598
-
SHA512
57fe7b2ab28af4ec2c10e88ae4eae3e088dbf6a7aedb1d2637aba0f1570bdf3a11fc62a8423a018430385ba99da10297b3491a5d71ade4524cf5d9e0c4276e15
-
SSDEEP
6144:67n3TGxj+ICAvuXZ9XLoReFCGl7Lhl2UBsE2nHlsYs8kQ8WLFYl5Xtn1CAfTrLbl:673Twj+ICysZ902JLz2LE2HlVs8b6vXB
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 00d890597737c64604fb99cac1123f82
Files
-
00d890597737c64604fb99cac1123f82.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 339KB - Virtual size: 338KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 15KB - Virtual size: 14KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ