Static task
static1
Behavioral task
behavioral1
Sample
0a7ba8e08a80f37397c477cc665f0b0a.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
0a7ba8e08a80f37397c477cc665f0b0a.exe
Resource
win10v2004-20231215-en
General
-
Target
0a7ba8e08a80f37397c477cc665f0b0a
-
Size
165KB
-
MD5
0a7ba8e08a80f37397c477cc665f0b0a
-
SHA1
1ec9c5f08b193f24a329b8eeb8e0a13567a31f51
-
SHA256
3c924e321863b89a10293b6be53725626cddd81a6bed145c561e3c8832ab5577
-
SHA512
97a3463c5ae5629fb468fa016464e697d3eaf4a2b2469fdb560772794a0b98dfaff63a5c1a64d017084c657a9b6ecb4b83ca5e2268661570cf128a29f8dc0530
-
SSDEEP
3072:KOelO8aMkaedXfXZqn9YbmZD02NP5xkFfNbANvQwEy91/V+tXnAaPdMgLvSZzYzm:KxjaMkRdvpqn9Y2A2niVNbo1eAaPdMBV
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 0a7ba8e08a80f37397c477cc665f0b0a
Files
-
0a7ba8e08a80f37397c477cc665f0b0a.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
.text Size: 30KB - Virtual size: 30KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 49KB - Virtual size: 48KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.bss Size: - Virtual size: 90KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 16B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ