Static task
static1
Behavioral task
behavioral1
Sample
46b1fe1dab02976656f2e3af0af1f77d.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
46b1fe1dab02976656f2e3af0af1f77d.exe
Resource
win10v2004-20231215-en
General
-
Target
46b1fe1dab02976656f2e3af0af1f77d
-
Size
170KB
-
MD5
46b1fe1dab02976656f2e3af0af1f77d
-
SHA1
90636c6fef005c5a35227576b9d39963fd708a6d
-
SHA256
7ecaa0ad4f78620738aa259d27384cd146e49f20b4f679ce3d03467b2c13da9d
-
SHA512
4235421b1cefbe13358ee55645a4c812dd46115f195ee11e76d3c701d470371b742842612baee1ab2660b2a4895342dbfb04c9bea059f2259535e6c295179709
-
SSDEEP
3072:J6GHlnAZkpAN445Lslg1oEy4RXaUCmwIiaRCUJX0:X6Nj5LInmwIftX
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 46b1fe1dab02976656f2e3af0af1f77d
Files
-
46b1fe1dab02976656f2e3af0af1f77d.exe windows:4 windows x86 arch:x86
09d0478591d4f788cb3e5ea416c25237
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree
Sections
.text Size: 80KB - Virtual size: 4.6MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 89KB - Virtual size: 120KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE