Static task
static1
Behavioral task
behavioral1
Sample
57644a8eeab85bd224dface4bf5d5f2d.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
57644a8eeab85bd224dface4bf5d5f2d.exe
Resource
win10v2004-20231222-en
General
-
Target
57644a8eeab85bd224dface4bf5d5f2d.bin
-
Size
82KB
-
MD5
57644a8eeab85bd224dface4bf5d5f2d
-
SHA1
4cd596d5e8f0cec123084cc276a59f5f0a755dc6
-
SHA256
bb0c787e5aaa9797028a6bba625de0e953c7b0639826a452a935d05272eca265
-
SHA512
06d19c6d8df9e9f0b17c92e2df113a602f5ab9043ae6f57f55b26c842e7984e16ff6d256827af45489737cd82c725e65ac70f0cd8c947522f03c0195f1c5f1f8
-
SSDEEP
1536:thlEJEY9k/eM0NWRU56BRtD/CwZBH4NnaHA0TXQDPQ6cuTd1:2EC6ezNWIut7CwZ14NnaHA0TXYDd1
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 57644a8eeab85bd224dface4bf5d5f2d.bin
Files
-
57644a8eeab85bd224dface4bf5d5f2d.bin.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
xxek0 Size: - Virtual size: 176KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
xxek1 Size: 57KB - Virtual size: 60KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
xxek2 Size: 423B - Virtual size: 1KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE