Static task
static1
Behavioral task
behavioral1
Sample
6e1f87e51a0e7711403f75f2e76eef63.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
6e1f87e51a0e7711403f75f2e76eef63.exe
Resource
win10v2004-20231215-en
General
-
Target
6e1f87e51a0e7711403f75f2e76eef63
-
Size
45KB
-
MD5
6e1f87e51a0e7711403f75f2e76eef63
-
SHA1
6577d07aba67beb8697716e2180813f06e23a397
-
SHA256
b8f038fd11b8dec71bc2602f86bacec23c314e52380cc89e0e21a1e772e24c3c
-
SHA512
fd1e66f7cfa4f7e652be1ff99bb08a54274c8670a9a11f9da311db67c56bc210ef1904ba9c39b551d664df238e1b56d78709faaca4834f6ec9822de8d6c2b3ba
-
SSDEEP
768:UNZeUS2mykVi2PN+1nQZtTik3MB7dLQd/+vxs6rZ:4/mPV/PNQQyeMB79yM
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 6e1f87e51a0e7711403f75f2e76eef63
Files
-
6e1f87e51a0e7711403f75f2e76eef63.exe windows:4 windows x86 arch:x86
c7a0059aa76106dbe105cb7ef0c2a64e
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetStartupInfoA
GetCommandLineA
HeapAlloc
TlsAlloc
GetModuleHandleA
GetLastError
user32
ScreenToClient
LoadCursorFromFileA
gdi32
CombineTransform
GetMapMode
SetPixel
CancelDC
msvcrt
__p__commode
_exit
_XcptFilter
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
exit
__p__fmode
__set_app_type
_except_handler3
_controlfp
Sections
.text Size: 4KB - Virtual size: 2KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 32KB - Virtual size: 30KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ