Static task
static1
Behavioral task
behavioral1
Sample
0c4b15cb10fc85eb55e12bf34e957f5a.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
0c4b15cb10fc85eb55e12bf34e957f5a.exe
Resource
win10v2004-20231215-en
General
-
Target
0c4b15cb10fc85eb55e12bf34e957f5a
-
Size
726KB
-
MD5
0c4b15cb10fc85eb55e12bf34e957f5a
-
SHA1
78bc314ca9bb6f92e7860e1935ac522545b94be2
-
SHA256
fe20fd5362a7fcf4c7f0e21454ef2168f836b105602aeaa59c074ae4a530048b
-
SHA512
36a075361331e6b4a97d8146b96936085da9f337a6f057bcefdaca09c458b0cec9b28b26a89d943b4a0b52a6e6c943bc84283974001202e0e898c87846d78c27
-
SSDEEP
12288:TwECaUglPnFsk7P0UahDyDT1XBRXjIjpXCNPx8uXHYK+r:TwEC70qkgUahDuRRvNPxv4xr
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 0c4b15cb10fc85eb55e12bf34e957f5a
Files
-
0c4b15cb10fc85eb55e12bf34e957f5a.exe windows:5 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 318KB - Virtual size: 318KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 103KB - Virtual size: 103KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 14KB - Virtual size: 24KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 254KB - Virtual size: 253KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 31KB - Virtual size: 30KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ