Static task
static1
Behavioral task
behavioral1
Sample
655d12f42102a021c207202b178f4372.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
655d12f42102a021c207202b178f4372.exe
Resource
win10v2004-20231222-en
General
-
Target
655d12f42102a021c207202b178f4372
-
Size
1.4MB
-
MD5
655d12f42102a021c207202b178f4372
-
SHA1
d9289f4edeabd6c167be97b5ce237a86a6834448
-
SHA256
122e63d9ea817bb333198d3cc1fde4d8dfa41049cf920ee584639c4a62951b4a
-
SHA512
898f8db29e32aaf39eefc70ec5899c3b8ef34b2e349b0ae67a2920302b1213dcbb7b5852bd5cd592e8358c13f4d6e51e69d65cca0e3a74496deea79a4ad1e161
-
SSDEEP
24576:1PRXf7a7FG7TjNYNrIgoQ9vr4J1gO26M5fceQDPxY2d8VFF5uiA86nG6FencR4tB:1PhfpeIxQ9z4JiOef0xJmuZAncCtQY
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 655d12f42102a021c207202b178f4372
Files
-
655d12f42102a021c207202b178f4372.exe windows:4 windows x86 arch:x86
baa93d47220682c04d92f7797d9224ce
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
lstrcpy
comctl32
InitCommonControls
Sections
Size: 160KB - Virtual size: 160KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 3KB - Virtual size: 11KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 512B - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 512B - Virtual size: 2.1MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
nqcdawxn Size: 1.3MB - Virtual size: 1.3MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
pqukrrsy Size: 512B - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE