Static task
static1
Behavioral task
behavioral1
Sample
4ae1a9a827b178cf0ef42a76c7f5865f.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
4ae1a9a827b178cf0ef42a76c7f5865f.exe
Resource
win10v2004-20231215-en
General
-
Target
4ae1a9a827b178cf0ef42a76c7f5865f
-
Size
97KB
-
MD5
4ae1a9a827b178cf0ef42a76c7f5865f
-
SHA1
2cbb5bc25897635e24d39737a11457698b6b0edd
-
SHA256
3df21c8bca252af75470ae8a0c59611064051a2f9d73a8834217becb80ab87b6
-
SHA512
6f522cbfa245cc3f48a1b70ea440ed133e238901b2158544273ad57089848c1b4325c91578638edd63baa7421e2405424efafcd0d3be8bde0537224e2a4cd19b
-
SSDEEP
3072:G9r0VtrsTqgT200VLuzUTMvkmtHaZx6t9GQJU8zidW5:S0VtQB0VL+Wmt6Te9GQmM5
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 4ae1a9a827b178cf0ef42a76c7f5865f
Files
-
4ae1a9a827b178cf0ef42a76c7f5865f.exe windows:5 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 133KB - Virtual size: 364KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
ypk16gs0 Size: - Virtual size: 12KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
ypfptg1w Size: - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
q5fh8ytz Size: - Virtual size: 128KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
ifxcx8k6 Size: 135KB - Virtual size: 136KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
sp9rn.34 Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ