Static task
static1
Behavioral task
behavioral1
Sample
171c09f1df14485878c28e233bb4ba8d.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
171c09f1df14485878c28e233bb4ba8d.exe
Resource
win10v2004-20231222-en
General
-
Target
171c09f1df14485878c28e233bb4ba8d
-
Size
357KB
-
MD5
171c09f1df14485878c28e233bb4ba8d
-
SHA1
670d6825fbfea60ee3027221519f7e94bba6f69a
-
SHA256
4f8b20a85eb7b85a09049ef3f4b6a608d7ed6718a72f4e6776a3cb4e82062e7a
-
SHA512
3141130b23c0af701573257123392de0264918cb4f544cd6164f5d5b40481abb1c224877282fb6f30caf56ebf191b2c7c2b6d7b5803b79bb05fdeebf0cacd2f3
-
SSDEEP
6144:/Tew5m/lwVd9r+GnWnfQ+DGt14wKcB3wOWEsKimW07x0ru7Esv0i4H:/Tewi+dNczDG/aO3wOlttWuL
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 171c09f1df14485878c28e233bb4ba8d
Files
-
171c09f1df14485878c28e233bb4ba8d.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 335KB - Virtual size: 335KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 20KB - Virtual size: 20KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ