Static task
static1
Behavioral task
behavioral1
Sample
10bad778b63d7976151aa6752e1c663f.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
10bad778b63d7976151aa6752e1c663f.exe
Resource
win10v2004-20231222-en
General
-
Target
10bad778b63d7976151aa6752e1c663f
-
Size
27KB
-
MD5
10bad778b63d7976151aa6752e1c663f
-
SHA1
ab42b4c256a08f872aca758b61f0c7dcd942326c
-
SHA256
f940c750317f4cd0c9326e30f9d02599804a31a8e6a16117cf8152d2325c1908
-
SHA512
488a00e9f3b32805692e222baa6f44aa0a5938ab2b16ebacb3216d6e2795507ccf9f8418a7abc99b249c1357a5b2af028a1c0af54424b6ac803558b46dbcfcff
-
SSDEEP
384:l3nle8QQBUpnx2NC3hnorxqMg6BBMtovQwUl/i7aHZK:l3zQqaxTooVoEovQwUVHHZ
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 10bad778b63d7976151aa6752e1c663f
Files
-
10bad778b63d7976151aa6752e1c663f.exe windows:1 windows x86 arch:x86
edd438ba9408b0398205916386ee1b15
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetModuleHandleA
VirtualAlloc
VirtualFree
EnumUILanguagesA
GetProcAddress
ExitProcess
gdi32
AbortPath
ChoosePixelFormat
CloseMetaFile
Sections
.rsrc Size: 512B - Virtual size: 44B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 512B - Virtual size: 322B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.text Size: 13KB - Virtual size: 12KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 12KB - Virtual size: 103KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE