Static task
static1
Behavioral task
behavioral1
Sample
2bb733f8f156abce476548a0694ed69d.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
2bb733f8f156abce476548a0694ed69d.exe
Resource
win10v2004-20231215-en
General
-
Target
2bb733f8f156abce476548a0694ed69d
-
Size
26KB
-
MD5
2bb733f8f156abce476548a0694ed69d
-
SHA1
8283699e9a8a6a7a97a4c8a22ff02a3c45d706eb
-
SHA256
2784c1d14cad30ff4948d980bf1f1a90a097a9256bf519e01159411f3cbf24a5
-
SHA512
55992b625630cf857d49838f5fd9cc8161d72163190a4d0b81e2ce5cc54a942fad780a0de0d571906a0379ce351add3e14a1dd2cbdb7bab0e524bfc1704e8bc7
-
SSDEEP
384:ngWmzMFTu6T2vU5CKlXQC803DH9wGamLrUS5kVvWqVIomnAQoyvUNmfO9zudIvAl:g/M4vU5hlXQavoxOn9oyvUNqiud0fjf
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 2bb733f8f156abce476548a0694ed69d
Files
-
2bb733f8f156abce476548a0694ed69d.exe windows:4 windows x86 arch:x86
962c76491e2525369bf6a3ac5b8a9b9f
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NO_BIND
IMAGE_DLLCHARACTERISTICS_WDM_DRIVER
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
QueryDosDeviceW
FindNextFileA
GetTempFileNameA
GetConsoleTitleA
PeekConsoleInputW
DefineDosDeviceA
CommConfigDialogW
GetConsoleInputExeNameA
PeekConsoleInputW
OpenWaitableTimerA
GetCPInfoExA
user32
SystemParametersInfoW
DlgDirListA
LoadCursorA
CreateAcceleratorTableA
LoadBitmapA
gdi32
GetICMProfileA
EnumICMProfilesW
GetTextFaceA
TextOutA
GetTextMetricsA
GetCharWidth32A
EnumICMProfilesW
CreateDCA
Sections
.fasm Size: - Virtual size: 7KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.text Size: 23KB - Virtual size: 23KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.share Size: 1024B - Virtual size: 866B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data? Size: 1024B - Virtual size: 766B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ