Static task
static1
Behavioral task
behavioral1
Sample
575aa62cee6786397257f5f5924f5cc3.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
575aa62cee6786397257f5f5924f5cc3.exe
Resource
win10v2004-20231215-en
General
-
Target
575aa62cee6786397257f5f5924f5cc3
-
Size
42KB
-
MD5
575aa62cee6786397257f5f5924f5cc3
-
SHA1
0b1d8476576c7c92777fee36b00dc0cb572556b8
-
SHA256
55541a9f6ab86fbfdf1ae085995e6fffef62504057ff9341649cc4e0c80f2d80
-
SHA512
8260ad7bbe8d0adcfcb1fc8a006cfc6d30dd8df203b48c3eb1323c91784a9ef583868994db408de4d08608b7294e031c006910cd3c99178936563083423f96cb
-
SSDEEP
768:cFTAVikDn1c8xIeIY45hoz7Cy4SBkCMA6xmEgEF4/Ct+v74U:8cVikDn1PlOhC4SBkrxDgEF46t+8U
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 575aa62cee6786397257f5f5924f5cc3
Files
-
575aa62cee6786397257f5f5924f5cc3.exe windows:4 windows x86 arch:x86
a13bfb073bc9118b7f06359394796516
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NO_SEH
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
VirtualProtect
GetProcAddress
LoadLibraryW
GetSystemTimeAsFileTime
Sections
.text Size: 1024B - Virtual size: 544B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 40KB - Virtual size: 40KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ