Static task
static1
Behavioral task
behavioral1
Sample
4e1207f5feb8624ee06372e9e396c445.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
4e1207f5feb8624ee06372e9e396c445.exe
Resource
win10v2004-20231215-en
General
-
Target
4e1207f5feb8624ee06372e9e396c445
-
Size
147KB
-
MD5
4e1207f5feb8624ee06372e9e396c445
-
SHA1
c4149f7d206ffb41fe619bc40fa171383113e01b
-
SHA256
c5946e2ae61fd3670252b321d05becbe8e3d30ead36e93c6535c6a2a1ddd6e3e
-
SHA512
05ae10a6e37237dad05e74c21c18ffa52b533846723fea91412cc9ded46beac825781656a9662009e3633a288dc4b9a79d9890a5331ce72621fa3f8511bd1d1b
-
SSDEEP
3072:N8IeQ/KPYyJYqMKd4apsmUg9LPrRVygJePC7SXh/8IOs3BZrD:N8IZ/KPY8m1gPrRVygJ4Xh/LpD
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 4e1207f5feb8624ee06372e9e396c445
Files
-
4e1207f5feb8624ee06372e9e396c445.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
y Size: - Virtual size: 208KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
7a Size: 142KB - Virtual size: 144KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
mz Size: 4KB - Virtual size: 991B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE