Static task
static1
Behavioral task
behavioral1
Sample
75868548a0c45e58e00ec34d304dc837.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
75868548a0c45e58e00ec34d304dc837.exe
Resource
win10v2004-20231222-en
General
-
Target
75868548a0c45e58e00ec34d304dc837.bin
-
Size
168KB
-
MD5
75868548a0c45e58e00ec34d304dc837
-
SHA1
a86b76d0e8359be5508419e7b71c7f78f0abfa07
-
SHA256
eb4b412b4fc58ce2f134cac7ec30bd5694a3093939d129935fe5c65f27ce9499
-
SHA512
7f62c71470affbc05c92e13fa675cd83e26f019b8085b5a77f0d47b3a893c3fdef828ea5900c553a1e4d8d7ff4a1c52edb1c369e8344afaaad5a43f40e2899e6
-
SSDEEP
3072:G+ifOpIiHf67lykJ0QK7moVY5HZLsXhj:G+w7H0ly/HZLsR
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 75868548a0c45e58e00ec34d304dc837.bin
Files
-
75868548a0c45e58e00ec34d304dc837.bin.exe windows:6 windows x64 arch:x64
71cf91ba8678284d24ce88b5c43c2693
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Imports
kernel32
HeapReAlloc
CreateEventA
HeapAlloc
Sections
.text Size: 159KB - Virtual size: 159KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 1024B - Virtual size: 14KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 512B - Virtual size: 420B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ