Static task
static1
Behavioral task
behavioral1
Sample
11020c3d97aed294e91f938b1c6e3305.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
11020c3d97aed294e91f938b1c6e3305.exe
Resource
win10v2004-20231215-en
General
-
Target
11020c3d97aed294e91f938b1c6e3305
-
Size
134KB
-
MD5
11020c3d97aed294e91f938b1c6e3305
-
SHA1
3b0d395d9ec0e55a2e8cdd8e4447df4bf22c0e66
-
SHA256
e27fc56b4708fb532d1d2367b7a26a3e72a97d5749cddef145f178a6083b1f9d
-
SHA512
c4dfd98199c573879a492c40231e3ad045454a0f6d39ee14840e6d07859a4effee40759276e2eb20d314a2c41176516bf7175adbdef84260299d66775ef0ae61
-
SSDEEP
3072:XdefhVBxdXsxcriaQTdFz4K02nrTa8ov6wr:+hVVcxcriaUb4Maj1r
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 11020c3d97aed294e91f938b1c6e3305
Files
-
11020c3d97aed294e91f938b1c6e3305.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 816KB - Virtual size: 814KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 208KB - Virtual size: 206KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 20KB - Virtual size: 36KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 192KB - Virtual size: 191KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ