Static task
static1
Behavioral task
behavioral1
Sample
171c3cebf6a3f2532e73c3f2e20cac4a.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
171c3cebf6a3f2532e73c3f2e20cac4a.exe
Resource
win10v2004-20231215-en
General
-
Target
171c3cebf6a3f2532e73c3f2e20cac4a.exe
-
Size
666KB
-
MD5
171c3cebf6a3f2532e73c3f2e20cac4a
-
SHA1
9e8bcb302d846b16f6721a2198c270d1efa69b85
-
SHA256
5dc41425af32e771e1146c073aeed6b5a5ed326b621970f94c78cc8b80872de0
-
SHA512
7220981399dcccc94b55788f45ec41b44b350a9cad1046d1cbfc0ac5eda4f24295b5dedc890ef6c95c7671296e9e42d80be073a9d48bb50ac1209657e3a2ee16
-
SSDEEP
12288:jvjM502iNv4s8fE7qdw87eo3bm2pMlCPxVlIH0JyP5:TU01usjqdw87xbdx4UY
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 171c3cebf6a3f2532e73c3f2e20cac4a.exe
Files
-
171c3cebf6a3f2532e73c3f2e20cac4a.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 593KB - Virtual size: 593KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 72KB - Virtual size: 71KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ