Static task
static1
Behavioral task
behavioral1
Sample
4be30790f49b2f49df822819ee7946ad.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
4be30790f49b2f49df822819ee7946ad.exe
Resource
win10v2004-20231215-en
General
-
Target
4be30790f49b2f49df822819ee7946ad
-
Size
108KB
-
MD5
4be30790f49b2f49df822819ee7946ad
-
SHA1
73956abcbb8fe7e71f3b4167c166ebbacf310cf6
-
SHA256
bb4a7eed4a295394c5c3d8dd8b1dd975f8401cd9e7b51427cdb54ecbbc0df599
-
SHA512
fe57f29e3239ea8915e77bab260d44ae04aae67e2b27580ae9790d1ac9b568bb54972726fa264342e2ee68b3fede536eb236f7fd73623d623ea2bec25f9755e6
-
SSDEEP
1536:GVcDnwEcB3jwzZnT/h+eUyyyE4Tr/pP3EFBMnl9ENZuZWd13Z/DIKORr+CNn+ZBc:G3h3+LwwXx0FWlpYdh2o96R
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 4be30790f49b2f49df822819ee7946ad
Files
-
4be30790f49b2f49df822819ee7946ad.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.96x985 Size: 871B - Virtual size: 27KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.xjgs72 Size: - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.$wysj5 Size: - Virtual size: 181KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.jlafhl Size: - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.8redcm Size: - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.d26dvb Size: - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 106KB - Virtual size: 108KB
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE