Static task
static1
Behavioral task
behavioral1
Sample
257b4a81e475766829156e4880770232.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
257b4a81e475766829156e4880770232.exe
Resource
win10v2004-20231222-en
General
-
Target
257b4a81e475766829156e4880770232
-
Size
9KB
-
MD5
257b4a81e475766829156e4880770232
-
SHA1
f61a12e9f91af08d56d3ca38aafa5f2ec4754762
-
SHA256
cead2e5ecfae4a8be7084acf29cb67555969889cade611c6aec9005e9d89bda9
-
SHA512
a3e48c6e8982094ba9462a2d28156e8df614c37358a9bf285520275235a40f6773fb11c0acf6f005e55b03b2a5d6add01001384d39e6bc7306fcf9118d62767d
-
SSDEEP
192:WBksu/zHNQDAeMZZ3c93VnjdwqzT32H0R9:hHwAeMwFnhwqPa0
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 257b4a81e475766829156e4880770232
Files
-
257b4a81e475766829156e4880770232.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 6KB - Virtual size: 6KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ