Static task
static1
Behavioral task
behavioral1
Sample
379dc2a3121b8982843f378e1a31a554.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
379dc2a3121b8982843f378e1a31a554.exe
Resource
win10v2004-20231222-en
General
-
Target
379dc2a3121b8982843f378e1a31a554
-
Size
142KB
-
MD5
379dc2a3121b8982843f378e1a31a554
-
SHA1
cebd31c8564d2ebeede8b0d585905e57b87e8b90
-
SHA256
0127c901ed65d377e39c9d7d9834fdaef1f7aacf503f619bd20c99b5b017a158
-
SHA512
1a35a0c9e77c5b8ce6e25604c3c4a3ea2e6169f46744b1c27bf67c39c518c67f57c1a16047bf7d0f033298755b3a252bcaa9eafa879ead238cb24be797f2ebe3
-
SSDEEP
3072:FXrpB/wqQfLLJ4z7Wq79u8ZoYl3pnXPlr:FD/wfLeCG93Rlzr
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 379dc2a3121b8982843f378e1a31a554
Files
-
379dc2a3121b8982843f378e1a31a554.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 3KB - Virtual size: 28KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rbss Size: - Virtual size: 3.0MB
.rdata Size: - Virtual size: 456KB
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.adata Size: 137KB - Virtual size: 140KB
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE