Static task
static1
Behavioral task
behavioral1
Sample
3e272d3515b1cf9dba3386d6c06c113d.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
3e272d3515b1cf9dba3386d6c06c113d.exe
Resource
win10v2004-20231215-en
General
-
Target
3e272d3515b1cf9dba3386d6c06c113d
-
Size
43KB
-
MD5
3e272d3515b1cf9dba3386d6c06c113d
-
SHA1
a4c886a1d04da3c2130152c6d21c6dd39f8b3cf3
-
SHA256
446eb87288f46fdb3289f1e776e0d6ddb87f47627c0314145399275635234263
-
SHA512
836c80a46878ae35029c7b2d005359e02755cdc18ec59f2ed02019377487021e8b7991aa32fae23aae80d76682c9dbc54a118d1834605ffd7dcd5e3c57ad498a
-
SSDEEP
768:pBvecpAztK5BP9O54CltEYJMWCVGWH+JjnDQ9XoCmzTE5rcm:jaKY5vcYJMHGWeJjnsoF0r
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 3e272d3515b1cf9dba3386d6c06c113d
Files
-
3e272d3515b1cf9dba3386d6c06c113d.exe windows:5 windows x86 arch:x86
f8f0fa2ed8e9149bb26f45cc087d495b
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
lstrcpynW
GetCommandLineA
GetDriveTypeW
EnterCriticalSection
UnmapViewOfFile
GlobalLock
GetUserDefaultUILanguage
DisconnectNamedPipe
GetSystemTime
ExpandEnvironmentStringsW
GetModuleHandleA
GetSystemTimeAsFileTime
CreateThread
GetModuleFileNameA
CloseHandle
SetLastError
HeapAlloc
lstrlenA
lstrcmpiA
MultiByteToWideChar
SetEndOfFile
CreateFileMappingW
MoveFileExW
OpenProcess
lstrcatW
SetThreadPriority
SetEvent
ReleaseMutex
FlushFileBuffers
GetTimeZoneInformation
CreateMutexW
user32
CharLowerBuffA
Sections
.cfcjej Size: 35KB - Virtual size: 54KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.gtyhsp Size: 2KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.vibaf Size: 4KB - Virtual size: 68KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ