Static task
static1
Behavioral task
behavioral1
Sample
2d3af67646dd893ac43fabae408f1957.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
2d3af67646dd893ac43fabae408f1957.exe
Resource
win10v2004-20231222-en
General
-
Target
2d3af67646dd893ac43fabae408f1957
-
Size
12KB
-
MD5
2d3af67646dd893ac43fabae408f1957
-
SHA1
29a99316b2762b232fa1a189b346924c8d75a8be
-
SHA256
145645791548f5f2dbd304cef82896efc669115f458458d35fda239375e3c2cf
-
SHA512
915e01f13bbab2fd1afca174a7ce1109b893947663f10d8b14426502cb3e3e41df09766a0fc76d2209d5a685e2e0b09f3552951d301d7956090f8277cc9a42cd
-
SSDEEP
384:IB+MhlS7r5nTocE4dswrLVuN22coW0C0kq2O:ahlSpnJvVs22Bo0
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 2d3af67646dd893ac43fabae408f1957
Files
-
2d3af67646dd893ac43fabae408f1957.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
.Upack Size: - Virtual size: 52KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 12KB - Virtual size: 24KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE