Static task
static1
Behavioral task
behavioral1
Sample
513d185ef3aecce7fb7382135b3ce5f0.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
513d185ef3aecce7fb7382135b3ce5f0.exe
Resource
win10v2004-20231215-en
General
-
Target
513d185ef3aecce7fb7382135b3ce5f0.exe
-
Size
260KB
-
MD5
513d185ef3aecce7fb7382135b3ce5f0
-
SHA1
d158de7814b9eecd61bae22c371f5f0eb8ed2ad4
-
SHA256
59c2bb0d6734a4bfc1ec1adc90b5cfb68219d5d92ec0d2c03dfb80f088b6ab3a
-
SHA512
cf630a6316cff397b3bef3786b2023a00a9ce8cfa5663f031b88872b218b28eb76da612679ce729147fc50d3d8cba82100f925299acdae2dc2ce1e9961ee1b17
-
SSDEEP
3072:oR+5rNUgD6dOvbSFVQCNzE4CfEglIBZs9VYpqMfyY3tLPwUl+HryFswxc59x9H5y:p5ygefQSE7MHZsjYpqDY34LpXHaEdY
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 513d185ef3aecce7fb7382135b3ce5f0.exe
Files
-
513d185ef3aecce7fb7382135b3ce5f0.exe.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
gYkfALf0 Size: - Virtual size: 188KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
P3DGtaMD Size: 8KB - Virtual size: 8KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
d2fPt6IS Size: 236KB - Virtual size: 236KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
x6nUdvqN Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
ZRE8EA8a Size: 8KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ