Static task
static1
Behavioral task
behavioral1
Sample
3f20f33fe0373a0e944327eb28dced5f0c161853b59e84144b28a30867f81aab.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
3f20f33fe0373a0e944327eb28dced5f0c161853b59e84144b28a30867f81aab.exe
Resource
win10v2004-20231215-en
General
-
Target
3f20f33fe0373a0e944327eb28dced5f0c161853b59e84144b28a30867f81aab
-
Size
3.4MB
-
MD5
c0c67e48865ac9a6e238887821f57e6c
-
SHA1
b2d4b90c37be9dac77b34222e482886a8c8ecf6e
-
SHA256
3f20f33fe0373a0e944327eb28dced5f0c161853b59e84144b28a30867f81aab
-
SHA512
4daf88c391eddad139cf942763c2c64e7b1aba2c12c7987257f6373157366d6bb20f4a9ba22d6aa40df75a89a1f518a47e1e602864702e67575ca087857eb9c9
-
SSDEEP
49152:s0ufpR97yGtP/p7LwQ/3eTKMaW57Zo4ITZ+RXLy+Kl8EX2wdS227Sa3gjTp+EJnL:s5pR9hx4Q/ugZ+x/KT2Ii09J0Ah
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 3f20f33fe0373a0e944327eb28dced5f0c161853b59e84144b28a30867f81aab
Files
-
3f20f33fe0373a0e944327eb28dced5f0c161853b59e84144b28a30867f81aab.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 3.3MB - Virtual size: 3.3MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 140KB - Virtual size: 139KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ