Static task
static1
Behavioral task
behavioral1
Sample
0d209b9c8bfd2d47ae2bb5cbd19d3b2b.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
0d209b9c8bfd2d47ae2bb5cbd19d3b2b.exe
Resource
win10v2004-20231215-en
General
-
Target
0d209b9c8bfd2d47ae2bb5cbd19d3b2b
-
Size
452KB
-
MD5
0d209b9c8bfd2d47ae2bb5cbd19d3b2b
-
SHA1
41737b34d1c5eedebfebc31c959112af9b5808e8
-
SHA256
cebb2f68a8b3d42f068123ea379429ce118630f30c3dde83b14e39090adbf69d
-
SHA512
7f3d67498bb569202fe57e60ae999576da654ae017f3c098a44a6b93c6242be39ab0eb1c82051977170f38467bfed4b04206936f6214e73b466bb7812456f7f4
-
SSDEEP
3072:M2jtO2q9j5wOAVzF5KcTwc4t0KX3MPh9B3MgDMIxBq8:HtO/Z5w5hpwJ0qcpH8G1/q8
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 0d209b9c8bfd2d47ae2bb5cbd19d3b2b
Files
-
0d209b9c8bfd2d47ae2bb5cbd19d3b2b.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
48bk Size: - Virtual size: 88KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
vf Size: 107KB - Virtual size: 108KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
agb2jmo7 Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.OVF Size: 60KB - Virtual size: 60KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE