Static task
static1
Behavioral task
behavioral1
Sample
58a4a3a06dfceefbf53dd8ac18667b0b.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
58a4a3a06dfceefbf53dd8ac18667b0b.exe
Resource
win10v2004-20231222-en
General
-
Target
58a4a3a06dfceefbf53dd8ac18667b0b
-
Size
846KB
-
MD5
58a4a3a06dfceefbf53dd8ac18667b0b
-
SHA1
2f873279abd1174176f638674280296d707da9eb
-
SHA256
bdca73105e4cdd5918ec40da86fc88e0223aeffbf08c18696f9d5e8f203bf456
-
SHA512
8d6692411cd012de8722a3f54a8d397abafeae3088ed240e1dc42ffdb5e51d5074a9114d0647635f413c8730838d93bb28eac9a65d4d4b4db4b6ca7d14fbaa0f
-
SSDEEP
24576:cUDPfxDctQQ3EPF6vhnGRo4gmb9cQmX9NP2:cULZ093EPF6v94gC3m7P2
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 58a4a3a06dfceefbf53dd8ac18667b0b
Files
-
58a4a3a06dfceefbf53dd8ac18667b0b.exe windows:5 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
Size: - Virtual size: 528KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 530KB - Virtual size: 540KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 314KB - Virtual size: 316KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.adata Size: - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE