Static task
static1
Behavioral task
behavioral1
Sample
0263490b5266b17a8b6ade8f6621c9dc.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
0263490b5266b17a8b6ade8f6621c9dc.exe
Resource
win10v2004-20231215-en
General
-
Target
0263490b5266b17a8b6ade8f6621c9dc
-
Size
59KB
-
MD5
0263490b5266b17a8b6ade8f6621c9dc
-
SHA1
68e6defbd9543b8dfa4bffc035951e74133dabb3
-
SHA256
a572a649410ce7f0746cb59e53ae5631c95d68db107747441f670a970fcfbc8d
-
SHA512
b0c62af008b8512de2c683acb223236dc1afa94149b4af0b4986bf62a9ddb074b18770fa3f1b513c5659d410944153f71fbd5e1c533588e6d8f9c50542d83e90
-
SSDEEP
768:13D3jBnYst7jMQT17dOQaWCfCeSB3PnUx6rb7aeJJcgFI7UcIVK:tDjGshjMQ++Cfw3PUxEaeQH9I
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 0263490b5266b17a8b6ade8f6621c9dc
Files
-
0263490b5266b17a8b6ade8f6621c9dc.exe windows:58086 windows x86 arch:x86
7a7803027531302026dedc7b5f6025f2
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Imports
kernel32
GetProcAddress
Sections
ybayzjia Size: 1KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
jizbqajq Size: 54KB - Virtual size: 56KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
rzqyjaaa Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
rizarrrz Size: 2KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ