Static task
static1
Behavioral task
behavioral1
Sample
589e206301d060e37e71eeb0aa958ff5.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
589e206301d060e37e71eeb0aa958ff5.exe
Resource
win10v2004-20231215-en
General
-
Target
589e206301d060e37e71eeb0aa958ff5
-
Size
1.1MB
-
MD5
589e206301d060e37e71eeb0aa958ff5
-
SHA1
39427e0a53c6250c28be93ce7ad1d45ff0c83d37
-
SHA256
442f73c103785c32c0ccccff31ef1825bac78564548290a3e45308476cba4dd1
-
SHA512
2c391a55186bfaa7a18fbdac44d564f0e5c02bd89e3a5cedff9e8427e0e1a3ba21bd147b81b1c56a19280c4f01a6747130fc0ed668bdc601723417b0d8dbc459
-
SSDEEP
24576:1+rQaOizhRUzq/S9xmcSp8qSmmz4lRmrua3KfFrSb31:OnEq/YxS2Z+lRmrua7L1
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 589e206301d060e37e71eeb0aa958ff5
Files
-
589e206301d060e37e71eeb0aa958ff5.exe windows:4 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
Size: 42KB - Virtual size: 96KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 1024B - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 2KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 175KB - Virtual size: 2.5MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.sdxsxx Size: 909KB - Virtual size: 912KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE