Static task
static1
Behavioral task
behavioral1
Sample
3e7dea5de685207a61b95a2e5b7883ab.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
3e7dea5de685207a61b95a2e5b7883ab.exe
Resource
win10v2004-20231215-en
General
-
Target
3e7dea5de685207a61b95a2e5b7883ab
-
Size
357KB
-
MD5
3e7dea5de685207a61b95a2e5b7883ab
-
SHA1
b1086e5e3a41594fa6b06e7a9b20f061f58a4f02
-
SHA256
8941af5a8e11191e0983e1db32c997790d6719b15e55181680e19ce5a657666e
-
SHA512
e0ab625695b6b27a4d6605c2f7310778c3b2a891d4b64f0225801cc8e7609d1e8543b04f717398c8eda6949af2b35a034ae77e0bed15609decf7f9e424b436d3
-
SSDEEP
6144:PjckxhGotqbSg9RsLvnQAFyhIOKFEjhLzNUTavglyrGtpk2oIPLtpLogTNSTMGdz:LxgJ79RCQRI7Edea2YepqIPLtpLTNSTd
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 3e7dea5de685207a61b95a2e5b7883ab
Files
-
3e7dea5de685207a61b95a2e5b7883ab.exe windows:5 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 312KB - Virtual size: 784KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 21KB - Virtual size: 28KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 512B - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 22KB - Virtual size: 22KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE