Static task
static1
Behavioral task
behavioral1
Sample
0cdfdfb7ed4d22e400749ed4aabd21bf.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
0cdfdfb7ed4d22e400749ed4aabd21bf.exe
Resource
win10v2004-20231215-en
General
-
Target
0cdfdfb7ed4d22e400749ed4aabd21bf
-
Size
18KB
-
MD5
0cdfdfb7ed4d22e400749ed4aabd21bf
-
SHA1
5ebc7b10398bc032bf04fa92276e91f8ed29a08a
-
SHA256
2f7f43cfe63f4065459cb72b49c3c1769aefd550a7d9b4c19b8b5c408690ac20
-
SHA512
bdd14e9faf35418fc3cba9c993d766d61302592baea5153d416fb534caff8ccb840b0e839aad216d8e7d90940ab82244086b6d8e3c72f80d142ebd1b3620652f
-
SSDEEP
384:5sX8rI+tXdbwkTMlL9pnC78lu2KiHfnf2J+RWlsBD/gr6+g9PflDnjPQg:5FImUJpC78ui/f2J+R35b1nYg
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 0cdfdfb7ed4d22e400749ed4aabd21bf
Files
-
0cdfdfb7ed4d22e400749ed4aabd21bf.exe windows:1 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
CODE Size: 7KB - Virtual size: 20KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
DATA Size: 3KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.abcdef Size: 5KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE