Static task
static1
Behavioral task
behavioral1
Sample
1ba2f0fe3a3697ecf95e76cf71dee7cd.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
1ba2f0fe3a3697ecf95e76cf71dee7cd.exe
Resource
win10v2004-20231215-en
General
-
Target
1ba2f0fe3a3697ecf95e76cf71dee7cd
-
Size
105KB
-
MD5
1ba2f0fe3a3697ecf95e76cf71dee7cd
-
SHA1
4bfc8be2c39d63f3dfe47408aa9e8ac86bd0d364
-
SHA256
ed6e3b039c928a0325b6e4c222a89246ef12b8efc7df65ea91e080c8cddc6dc8
-
SHA512
8939bc87f6ee972bcb223f066d3cd82eebff0890f37ba6fd27a665c5d4ece6c51945b7e939bd44f1c81302344b67df8b3566726e243a771848e867e6413ddefa
-
SSDEEP
1536:zmhSrHHChUALGJ6/StzTitur8gaITaHj1DENMu4OYc3tbo/0iCfT4Ftv8iTt6DtJ:ihSrIqESZTing/aD2CkYWBkpkgl+pW9i
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 1ba2f0fe3a3697ecf95e76cf71dee7cd
Files
-
1ba2f0fe3a3697ecf95e76cf71dee7cd.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
.text Size: 31KB - Virtual size: 31KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 50KB - Virtual size: 49KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.bss Size: - Virtual size: 91KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 16B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ