Static task
static1
Behavioral task
behavioral1
Sample
1549c023a43d85f39d273f3e2bc5e7f8.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
1549c023a43d85f39d273f3e2bc5e7f8.exe
Resource
win10v2004-20231215-en
General
-
Target
1549c023a43d85f39d273f3e2bc5e7f8
-
Size
17KB
-
MD5
1549c023a43d85f39d273f3e2bc5e7f8
-
SHA1
664a06f13a6123fb0e8eb87cc46868e00d2b95a5
-
SHA256
5871afa909fabcef35aab42c9403dae89ff247ba92383bb7d63c3f9d67f8188a
-
SHA512
ae2c7265a153cdf0c456de13fb6899d39015cd9c41c47ef92dc9ed25bef6543438d2bdb74f39d88c10992c558aa253f4cc4427ebf7a58fa0e43ffadb5fd66100
-
SSDEEP
96:28g6ryL6bGJMK/gKWrsD/b50IwmV2B5rzvdWrQ:8dL6Cn/gKWoTVV2B7eQ
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 1549c023a43d85f39d273f3e2bc5e7f8
Files
-
1549c023a43d85f39d273f3e2bc5e7f8.exe windows:4 windows x86 arch:x86
c162473f2b23a9ebcac3fd8a0fcf7b1d
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
user32
GetDCEx
kernel32
CreateThread
ExitProcess
GetLastError
GetTickCount
Sleep
WaitForSingleObject
gdi32
EnumFontsA
Sections
.text Size: 16KB - Virtual size: 16KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 384B - Virtual size: 320B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ