Static task
static1
Behavioral task
behavioral1
Sample
1d13512ef78a429169d2d77f8777928a.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
1d13512ef78a429169d2d77f8777928a.exe
Resource
win10v2004-20231215-en
General
-
Target
1d13512ef78a429169d2d77f8777928a
-
Size
60KB
-
MD5
1d13512ef78a429169d2d77f8777928a
-
SHA1
c4e5b6efa2a4c25ebf4376f612540ca2721b3049
-
SHA256
67594f0a4c6afc1818af5536b5806f640ef2ef13a830a60824d26ac97554403d
-
SHA512
e77ea7266c80bf8bcd291d93ca8ed19518927bfc3b9561608858baa1a2761e65dbc8d8169a2377f37c0191dbfc79f1cd71ef3aa7a2ca553e74e1fd8ae638cd5a
-
SSDEEP
1536:A7pgOyZm/qstS3TPxoo4pcDcEYJ5WoxqzU:Cp1y0cCFpaJYmuqzU
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 1d13512ef78a429169d2d77f8777928a
Files
-
1d13512ef78a429169d2d77f8777928a.exe windows:4 windows x86 arch:x86
55344308dc79044c45111ece37171b16
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
FreeLibrary
InterlockedIncrement
GetLocalTime
FindFirstChangeNotificationW
GetVersion
GetSystemTime
SetEndOfFile
GlobalAlloc
SetLastError
LoadResource
SetThreadPriority
CreateEventW
LoadLibraryW
LoadLibraryA
GetLastError
WritePrivateProfileStringW
CloseHandle
FindResourceExW
WaitForSingleObject
ResumeThread
GetDriveTypeW
GetCurrentThread
GetProcAddress
GetFileAttributesW
CreateThread
FileTimeToSystemTime
LockResource
CreateWaitableTimerW
FindClose
GetPrivateProfileStringW
VirtualFree
FindNextChangeNotification
user32
TrackPopupMenu
GetWindowTextW
GetWindowDC
SetCursorPos
OffsetRect
RegisterHotKey
GetDlgItem
SendMessageW
GetWindowThreadProcessId
DestroyMenu
DestroyIcon
MessageBoxW
AppendMenuW
LoadBitmapW
GetClassNameW
WindowFromPoint
SetCapture
ReleaseCapture
SetCursor
GetWindowRect
DrawTextW
UpdateWindow
LoadImageW
PostMessageW
gdi32
DeleteDC
CreateSolidBrush
Rectangle
SelectObject
GetStockObject
CreateCompatibleBitmap
LineTo
CreatePen
DPtoLP
CreateICW
CreateBitmap
advapi32
LookupAccountSidW
RegOpenKeyExW
RegDeleteValueW
RegSetValueExW
RegCloseKey
SetSecurityDescriptorDacl
Sections
.text Size: 48KB - Virtual size: 46KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 4KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 1024B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE