Static task
static1
Behavioral task
behavioral1
Sample
3ac65e5ee8d4ccd5eec69831417abc71.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
3ac65e5ee8d4ccd5eec69831417abc71.exe
Resource
win10v2004-20231215-en
General
-
Target
3ac65e5ee8d4ccd5eec69831417abc71
-
Size
15KB
-
MD5
3ac65e5ee8d4ccd5eec69831417abc71
-
SHA1
faff3148ae8206d8ba71cfaf5a2d5981a06e17bb
-
SHA256
40c2f4f9b5036b505a6fa0fdc054fef096addeb7efd8656b7dc996f5aa1c5ba2
-
SHA512
e46d4389e0ede95ce16b6c6a95e55508bee566473597410e0bd778fd4b2ddb4b2d0d5ba3f674fc40de9de833ef53664babd9098a4acf53d45fa5d69787460b4b
-
SSDEEP
192:ZzuTxFmoxE1AVSlXXA0tQRQJLuuV4RFa4wezz31an4VOpgKwwVsJHPaiNnEBys:ZiTxdxhSljqRGLuuVQOeY4UyH1NEB
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 3ac65e5ee8d4ccd5eec69831417abc71
Files
-
3ac65e5ee8d4ccd5eec69831417abc71.exe windows:4 windows x86 arch:x86
3756e16acb9a6426264c735eb1b51cd8
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree
ws2_32
send
urlmon
ObtainUserAgentString
shlwapi
SHSetValueA
msvcrt
?terminate@@YAXXZ
user32
wvsprintfA
ole32
CoGetInterfaceAndReleaseStream
oleaut32
DispCallFunc
Sections
.text Size: 11KB - Virtual size: 28KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 2KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE