Static task
static1
Behavioral task
behavioral1
Sample
038aa18c588688353f4a67782783e029.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
038aa18c588688353f4a67782783e029.exe
Resource
win10v2004-20231215-en
General
-
Target
038aa18c588688353f4a67782783e029
-
Size
11KB
-
MD5
038aa18c588688353f4a67782783e029
-
SHA1
9d80e3c44eb82e671acef2e2e37b8194bcec8c8c
-
SHA256
5b58f0ae74f9482fcc65d9e89e562cad4600adc0e6a803e0e54815ef097bc3ab
-
SHA512
ec5a0a2896eb2de835ad3200198da9faf8f7e4f441aa01ac9a204533e2204a8181fa91377c5bffaba1663d37eac05c86d56ba48e9284abe272fd7077581c4f2b
-
SSDEEP
192:VpiHGa38w65Ig9vIUIkZdw+AlXZk5e3Gxcfz9Y+QLshstAeAKG35tjZzIlt9njyf:VpmGi8w6JvIQZy+Ad4VSJwshsuP7zotQ
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 038aa18c588688353f4a67782783e029
Files
-
038aa18c588688353f4a67782783e029.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
Size: - Virtual size: 40KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 21KB - Virtual size: 28KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 126KB - Virtual size: 128KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.adata Size: - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE