Static task
static1
Behavioral task
behavioral1
Sample
1f5da94b186116a382cc20d1c7575e82.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
1f5da94b186116a382cc20d1c7575e82.exe
Resource
win10v2004-20231215-en
General
-
Target
1f5da94b186116a382cc20d1c7575e82
-
Size
46KB
-
MD5
1f5da94b186116a382cc20d1c7575e82
-
SHA1
f07dcac0a6b96e9359ad4803631b5cf551b0f319
-
SHA256
4ebba03f83bd2df18d55ea32615d2fedaca59b7ad569e0ae65f72fc5deb9c848
-
SHA512
b3f7c1e8af62c6b904823daa1645b75644a57feab4e104caa90d46bf8c6cf85ad88d2c8f39b81fe9f40ac92ec01c008412f5d9a942f07e488d5d64cb1d787e6b
-
SSDEEP
768:bV+RpwcERr+igw8DY5UIbcaR8ifSkr//rFuFU8TwlKO03794E08t9tNcHZHu8t2M:bURpCE7DYqaSYcFU8sJC7WE08nEu8kHs
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 1f5da94b186116a382cc20d1c7575e82
Files
-
1f5da94b186116a382cc20d1c7575e82.exe windows:5 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 27KB - Virtual size: 27KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 5KB - Virtual size: 181KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.conf Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.nah Size: 5KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE